8153 matches found
CVE-2022-20526
CVE-2022-20526 affects Android 13 via CanvasContext::draw in CanvasContext.cpp, where a missing bounds check can cause an out-of-bounds write and local privilege escalation. The exploit requires user interaction; no remote vector is detailed. Multiple connected sources (Red Hat advisory, NVD, OSV...
CVE-2022-20546
CVE-2022-20546 affects Android 13 in the code path described by the Pixel/Effect.cpp vulnerability: a missing bounds check in the function getCurrentConfigImpl can cause an out-of-bounds write. This vulnerability is characterized as a local escalation of privilege with system execution privileges...
CVE-2022-20550
CVE-2022-20550 affects Android 13 (Pixel devices) with a local elevation of privilege caused by a confused deputy, enabling arbitrary protected activities without user interaction. Public sources (Pixel Update Bulletin 2022-12-01) associate fixes to the 2022-12-05 patch level; no explicit vulnera...
CVE-2022-20584
CVE-2022-20584 affects the Android kernel component in the shared_mem.c file, specifically the page_number handling. The issue is described as improper input validation that can enable code execution in the secure world, leading to local escalation of privilege without extra privileges or user in...
CVE-2022-21746
CVE-2022-21746 affects the imgsensor component in MediaTek chips, where a missing bounds check can cause an out-of-bounds read. This can lead to local denial of service with system execution privileges, without user interaction. The entry notes a patch identified as ALPS06479698 (Issue ALPS064796...
CVE-2022-21758
CVE-2022-21758 involves a memory corruption risk in the internal component "ccu" caused by a double free. The result is potential local escalation of privilege with System execution privileges needed; exploitation does not require user interaction. A patch exists (Patch ID: ALPS06439600; Issue ID...
CVE-2022-25814
The CVE-2022-25814 entry describes a local PendingIntent hijacking flaw in Wearable Manager Installer (Android) prior to Samsung SMR Mar-2022 Release 1. Root cause: hijack of PendingIntent to cause unauthorized actions without permission. Affected component: Wearable Manager Installer. Impact per...
CVE-2022-27828
CVE-2022-27828 involves Samsung MediaMonitorEvent with an improper input/validation check prior to SMR Apr-2022 Release 1. The vulnerability is rated HIGH (CVSSv3.1: Local, Low attack complexity, Privileges Required: Low, No user interaction; confidentiality, integrity, and availability all high)...
CVE-2022-30721
The CVE-2022-30721 entry concerns a vulnerability in libsmkvextractor. Description: an improper input validation check logic vulnerability in libsmkvextractor prior to SMR Jun-2022 Release 1, which allows an attacker to trigger a crash. Connected sources corroborate a Samsung/Android context and ...
CVE-2022-42513
CVE-2022-42513 : A missing bounds check in ProtocolEmbmsBuilder::BuildSetSession (protocolembmsbuilder.cpp) allows an out-of-bounds write in the Android kernel, enabling local escalation of privilege to SYSTEM level. No user interaction is required. Documented in multiple sources (e.g., NVD entry...
CVE-2022-42524
The CVE-2022-42524 entry describes an out-of-bounds read in Android’s sms_GetTpUdlIe within sms_PduCodec.c due to a missing bounds check. This can lead to remote information disclosure without extra privileges or user interaction. Connected OSV data confirms the same file-level bug, but no exploi...
CVE-2022-42534
CVE-2022-42534 affects the Android kernel component, specifically the trusty_ffa_mem_reclaim path in shared-mem-smcall.c. The issue is a privilege-escalation vulnerability caused by improper input validation, enabling local elevation of privilege with no additional execution privileges required, ...
CVE-2023-20725
CVE-2023-20725 affects MediaTek chip preloader: an out-of-bounds write caused by a missing bounds check can lead to local escalation of privilege with System execution privileges required. Exploitation requires no user interaction. Affected devices/versions include MT6880, MT6890, MT6980, and MT6...
CVE-2023-20830
The CVE-2023-20830 entry describes a local out-of-bounds write in gps on MediaTek chips due to a missing bounds check. This could allow local escalation of privilege with System execution privileges; user interaction is not required. The issue is associated with a patch ID ALPS08014144 and an Iss...
CVE-2023-20969
CVE-2023-20969 describes an out-of-bounds read in multiple locations of p2p_iface.cpp, leading to possible local information disclosure with system execution privileges required. The Android 13 context is documented, with impact on confidentiality (C:H) and no required user interaction. The issue...
CVE-2023-21013
CVE-2023-21013 is an out-of-bounds read in hostapd.cpp (forceStaDisconnection) on Android 13. The vulnerability could allow local information disclosure with system-level privileges and requires no user interaction. Connected sources consistently describe the issue without public exploit details....
CVE-2023-21148
CVE-2023-21148 describes a vulnerability in the BuildSetConfig function of protocolimsbuilder.cpp where a missing null check can cause an out-of-bounds read. This could allow local information disclosure with System-level execution privileges required, and exploitation does not require user inter...
CVE-2023-21177
CVE-2023-21177 affects Android 13 via WindowManagerService.requestAppKeyboardShortcuts. A missing permission check could allow an attacker to infer the app a user is interacting with, enabling local information disclosure without additional execution privileges and without user interaction. Repor...
CVE-2023-21178
CVE-2023-21178 concerns Android 13 where the issue arises in the installKey function of KeyUtil.cpp. A race condition could cause a possible failure of file encryption, leading to local information disclosure with System privileges required. Exploitation reportedly does not require user interacti...
CVE-2023-21179
CVE-2023-21179 affects Android 13 and involves XmlUtil.java’s parseSecurityParamsFromXml. The root issue is a weakness in how crypto is used, allowing bypass of a user-specified wifi encryption protocol, enabling local privilege escalation with no additional execution privileges or user interacti...
CVE-2023-21198
CVE-2023-21198 affects Android 13 via the Bluetooth SDP server (btif_sdp_server.cc) in remove_sdp_record, where a missing bounds check enables an out-of-bounds read and local information disclosure. Exploitation is described as requiring no user interaction; no exploit specifics or exploitation s...
CVE-2023-21203
The CVE-2023-21203 issue affects Android 13 with a fault in startWpsPbcInternal in sta_iface.cpp that allows an out-of-bounds read due to improper input validation. This could enable local escalation of privilege to SYSTEM with no user interaction required. Connected sources corroborate the file ...
CVE-2023-21223
CVE-2023-21223 affects Android kernel via an out-of-bounds read in LPP_ConvertGNSS_DataBitAssistance (LPP_CommonUtil.c) caused by a missing bounds check. This enables remote information disclosure with no privileges or user interaction required. Impact and exploitability are described in multiple...
CVE-2023-21224
CVE-2023-21224 affects the Android kernel, specifically the ss_ProcessReturnResultComponent function in ss_MmConManagement.c. The vulnerability is a heap-buffer-overflow–induced out-of-bounds read that could lead to remote information disclosure without extra privileges or user interaction. Publi...
CVE-2023-21314
CVE-2023-21314 is a Bluetooth-related information-disclosure vulnerability in Android, caused by a missing bounds check that allows an out-of-bounds read. The impact is local information disclosure with system-level privileges required for exploitation; no user interaction is needed. Multiple con...
CVE-2023-48411
CVE-2023-48411 involves an out-of-bounds read in SignalStrengthAdapter::FillGsmSignalStrength() inside protocolmiscadapter.cpp. The issue stems from a missing bounds check and could enable local information disclosure with baseband firmware compromise required; exploitation does not require user ...
CVE-2024-29747
CVE-2024-29747 affects the dvfs_get_lv function in dvfs.c, where a missing null check enables an out-of-bounds read. This can lead to local information disclosure with no additional privileges and no user interaction required. The connected records consistently describe the same issue, but none p...
CVE-2024-43764
CVE-2024-43764 affects Google Android where the onPrimaryClipChanged path in ClipboardListener.java could partially bypass the lock screen, enabling local elevation of privilege with no user interaction. Exploitation is described as requiring LOCAL access and LOW privileges with UI:N, and impact ...
CVE-2024-47014
CVE-2024-47014 affects Google Pixel devices running Android with a privilege-escalation vulnerability in the ABL component (A-330537292). Affected product: Pixel devices; vulnerability type: Elevation of Privilege (EoP). Root cause: not explicitly detailed beyond ABL involvement. Impact: privileg...
CVE-2024-47026
CVE-2024-47026 affects Google Pixel devices and is due to an incorrect bounds check in gsc_gsa_rescue within gsc_gsa.c, causing an out-of-bounds read and local information disclosure without requiring user interaction. Exploitation details are not provided in the documents. Affected component: gs...
CVE-2015-3102
Adobe Flash Player and related runtimes (Windows/macOS: 13.0.0.292 and 14.x–18.x before 18.0.0.160; Linux before 11.2.202.466; AIR before 18.0.0.144 on Windows and before 18.0.0.143 on macOS/Android; AIR SDKs before 18.0.0.144/18.0.0.143) are affected by CVE-2015-3102, which enables remote bypass...
CVE-2015-5570
CVE-2015-5570 is a use-after-free vulnerability in Adobe Flash Player (affecting pre-18.0.0.241 and 19.x before 19.0.0.185) and Adobe AIR before 19.0.0.190, enabling remote code execution via specially crafted SWF handling. Adobe APSB15-23 patches are referenced; apply fixed builds to remediate.
CVE-2015-5588
Technical details about CVE-2015-5588 are not publicly provided in the connected documents. No affected product/version/impact is specified here. Monitor for updates in the EUVD advisories and official vendor bulletins.
CVE-2016-3857
CVE-2016-3857 is an Android/Linux kernel privilege-escalation flaw in the ARM OABI compatibility layer present on Nexus 7 (2013) devices prior to 2016-08-05. The issue arises from two bugs in the ARM OABI area that can let local attackers escalate privileges via a crafted app (internal bug 285225...
CVE-2017-0714
CVE-2017-0714 is a remote code execution vulnerability in Android’s media framework h263 decoder . Affected products/versions: Android 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Root cause: vulnerability exists in decoding of H.263 files/streams, enabling arbitrary code execution. Docume...
CVE-2017-0722
Summary of CVE-2017-0722 : A remote code execution vulnerability in the Android media framework, specifically the h263 decoder. Affected products/versions: Android devices running 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Root cause as stated in the provided documents is the vulnerabili...
CVE-2017-8244
CVE-2017-8244 affects Android CAF builds leveraging the Linux kernel. The vulnerability arises in core_info_read and inst_info_read where the buffer structures dbg_buf, dbg_buf->curr, and dbg_buf->filled_size can be concurrently modified by multiple threads without mutexes/locks. This race ...
CVE-2018-9402
CVE-2018-9402: A buffer overwrite in multiple functions of gl_proc.c due to a missing bounds check could lead to kernel privilege escalation. The issue is documented across several sources (NVD/Red Hat CNVD/CNNVD/CIRCL and related Android Pixel bulletin context) with no exploitation details provi...
CVE-2018-9465
Summary : CVE-2018-9465 affects the Android kernel, specifically the binder.c task_get_unused_fd_flags path, where a use-after-free can cause memory corruption. This could enable local privilege escalation with no extra privileges required and without user interaction. Multiple connected advisori...
CVE-2018-9518
CVE-2018-9518 affects the Android/Linux kernel description in the connected Nessus/NASL entries. The flaw is in nfc_llcp_build_sdreq_tlv of llcp_commands.c, where a missing bounds check allows an out-of-bounds write. This could enable local escalation of privilege with SYSTEM execution privileges...
CVE-2020-0053
The CVE-2020-0053 issue affects Android 10, specifically in hidl_struct_util.cpp within convertHidlNanDataPathInitiatorRequestToLegacy and convertHidlNanDataPathIndicationResponseToLegacy. It describes a possible out-of-bounds write due to a missing bounds check, enabling local escalation of priv...
CVE-2020-35550
The CVE-2020-35550 entry describes a vulnerability affecting Samsung mobile devices running O(8.x), P(9.0), Q(10.0), and R(11.0) software, where attackers can bypass Factory Reset Protection (FRP) via the StatusBar. This entry is linked to Samsung’s internal ID SVE-2020-17888 (December 2020). No ...
CVE-2021-25363
Summary: CVE-2021-25363 describes an improper access control in Samsung’s ActivityManagerService prior to the SMR APR-2021 Release 1, enabling untrusted applications to access running processes and delete local files. Affected scope (from provided sources): Samsung SMR (system patch package) prio...
CVE-2021-39679
CVE-2021-39679 affects Android kernel graphics handling (vendor_graphicbuffer_meta.cpp). The issue is a race condition leading to a possible use-after-free, enabling local escalation of privilege without extra execution privileges, and not requiring user interaction. Documentation consistently de...
CVE-2021-39680
CVE-2021-39680 affects the Android kernel, with the flaw located in sec_SHA256_Transform within sha256_core.c. The issue allows reading heap data due to uninitialized data, enabling local information disclosure with system privileges. Exploitation does not require user interaction. The vulnerabil...
CVE-2021-39684
CVE-2021-39684 relates to the Android kernel component gs101/abl/target/slider/target.c, where a logic error can cause allocation of RWX memory. This may enable local privilege escalation with no extra execution privileges or user interaction required. Connected OSV data confirms the issue but do...
CVE-2021-39764
CVE-2021-39764 is documented in Android 12L release notes as a Framework Elevation of Privilege (EoP) vulnerability with moderate severity. The entry specifies an improper input validation issue in Settings that can display an incorrect app name, enabling local privilege escalation via app spoofi...
CVE-2021-39772
CVE-2021-39772 affects Android 12L via a Bluetooth-related issue where access to the A2DP audio control switch is possible due to a missing permission check. This could enable local privilege escalation without user interaction. The flaw is described in the Android 12L security release notes and ...
CVE-2022-20044
CVE-2022-20044 involves a use-after-free in Bluetooth that can crash the Bluetooth service and enable local escalation of privilege without user interaction. Exploitation is local with low privileges required and LOW attack complexity; the vulnerability impacts confidentiality, integrity, and ava...
CVE-2022-20065
In the CVE-2022-20065 entry, the issue is described as a missing bounds check in the ccci component leading to an out-of-bounds read. This could allow local information disclosure with System execution privileges, and exploitation does not require user interaction. A patch is identified: ALPS0610...