8153 matches found
CVE-2021-1016
The CVE-2021-1016 issue affects Android 12 and points to UsbPermissionActivity.java. A tapjacking/overlay flaw could grant USB access to an app without informed user consent, enabling local privilege escalation with user interaction required for exploitation. The vulnerability is described across...
CVE-2021-39768
CVE-2021-39768 (Android 12L) describes an elevation-of-privilege issue in Settings where a missing permission check could allow an attacker to add an automatic Wi‑Fi network connection without user consent. A local attacker could exploit this with user interaction to gain privileged access on the...
CVE-2021-39771
CVE-2021-39771 is an Elevation of Privilege (EoP) in Android 12L Platform related to improper input validation in Settings, allowing a local attacker to misrepresent which app adds a Wi‑Fi network. Impact is Moderate per Android 12L release notes; exploitation requires user interaction. The vulne...
CVE-2022-20243
CVE-2022-20243 affects Google Android’s Core Utilities on Android 13. The issue enables local information disclosure of sensitive browsing data and requires System execution privileges; no user interaction is needed. The provided data show a Medium base CVSS 3.1 score (AV:L/AC:L/PR:H/UI:N/S:U/C:H...
CVE-2022-20244
CVE-2022-20244 affects Android 13 and its Bluetooth stack. The issue is a missing bounds check in Bluetooth, causing an out-of-bounds write in the Bluetooth subsystem. This could enable local escalation of privilege if more than 100 Bluetooth devices are connected, with no additional execution pr...
CVE-2022-20258
CVE-2022-20258 affects Android 13 Bluetooth. The issue stems from a configuration error that allows bypassing compiler exploit mitigations, enabling local escalation of privilege with no additional execution privileges required and no user interaction. Impact is limited to devices where Bluetooth...
CVE-2022-21776
The CVE-2022-21776 issue is a race-condition triggered use-after-free in MediaTek’s MDP component leading to local privilege escalation with SYSTEM rights, no user interaction required. Multiple sources (NVD entry, Red Hat advisory, CNVD/CNNVD summaries) corroborate the same root cause and impact...
CVE-2022-23425
CVE-2022-23425 describes an input validation flaw in the Exynos baseband prior to Samsung SMR Feb-2022 Release 1, allowing an attacker to send arbitrary NAS signaling messages using a fake base station. Affected component: Exynos baseband; issue stems from improper input validation. Impact is des...
CVE-2022-25831
CVE-2022-25831 affects Samsung S Secure prior to SMR Apr-2022 Release 1 and is an improper access control vulnerability, enabling physical attackers to access secured data under certain conditions. The connected documents identify the affected component as S Secure and indicate the remediation pa...
CVE-2022-26091
CVE-2022-26091 affects Samsung Knox Manage with an improper access control vulnerability that can allow a local, physical attacker to bypass Knox Manage by using a function key on the hardware keyboard. The issue is described as a bypass of access controls via a hardware-key function, impacting c...
CVE-2022-26434
CVE-2022-26434 describes an out-of-bounds write in the mailbox caused by a missing bounds check, enabling local escalation to System privileges without user interaction. Public references across NVD/Red Hat and related feeds identify the patch ID ALPS07138450 (Issue ALPS07138450) as the remediati...
CVE-2022-28782
CVE-2022-28782 concerns Samsung’s Contents To Window in the context of the SMR May-2022 Release 1. The issue is described as an improper access control that could allow a physical attacker to install a package before the Setup wizard finishes. The available remediation is a patch that blocks the ...
CVE-2022-30719
CVE-2022-30719 affects Samsung Mobile’s libsmkvextractor. The root cause is an improper input validation check logic, prior to SMR Jun-2022 Release 1, which can trigger a crash (availability impact). The vulnerability is documented across NVD/Red Hat/CNVD/CNNVD entries; exploitation status is not...
CVE-2022-32642
The CVE-2022-32642 issue affects the ccd component, where a race condition can cause memory corruption. This could enable local escalation of privilege with System execution privileges required and no user interaction is needed. The problem is documented across multiple sources with patch referen...
CVE-2022-39848
CVE-2022-39848 relates to Samsung AT_Distributor prior to SMR Oct-2022 Release 1, where sensitive SerialNo data can be exposed to a local attacker via log exposure. The issue is a local-vulnerability risk (ATT&CK-style local access) with impact limited to confidentiality (LOW). The public descrip...
CVE-2022-39913
CVE-2022-39913 concerns the Exposure of Sensitive Information to an Unauthorized Actor in Samsung’s Persona Manager prior to Android T(13). The issue arises from a data exposure that allows a local attacker to access user profiles information. Affected product/area: Persona Manager on devices run...
CVE-2022-47347
CVE-2022-47347 affects engineermode services where a missing permission check enables local denial of service. Primary sources (NVD/Red Hat/CVE listings and related mirrors) describe a local access/privilege issue in engineermode services without detailing exploit vectors or affected product vers...
CVE-2023-20925
CVE-2023-20925 affects the Android kernel, specifically the use-after-free in the PowerSessionManager.cpp function setUclampMinLocked. This memory corruption can lead to local escalation of privilege without extra execution privileges and requires local access, with no user interaction needed. Th...
CVE-2023-21066
CVE-2023-21066 describes a heap buffer overflow in the Android kernel, specifically in the cd_CodeMsg function of cd_codec.c. This causes an out-of-bounds write that could enable remote code execution with no privileges and no user interaction required. The vulnerability is documented across mult...
CVE-2023-21147
CVE-2023-21147 (Android kernel) involves a use-after-free in lwis_i2c_device_disable within lwis_device_i2c.c. The underlying logic error can lead to local elevation of privilege with no extra execution privileges required, and exploitation is described as local with no user interaction. Multiple...
CVE-2023-21169
CVE-2023-21169 affects Android 13 and relates to an out-of-bounds read in inviteInternal of p2p_iface.cpp caused by a missing bounds check. The vulnerability can lead to local information disclosure with System execution privileges required; exploitation does not require user interaction. The ava...
CVE-2023-21173
CVE-2023-21173 affects Android 13 where multiple methods in DataUsageList.java can reveal admin network activity due to a missing permission check, enabling local information disclosure with no extra privileges or user interaction. The vulnerability is documented across multiple feeds (NVD, Red H...
CVE-2023-21193
CVE-2023-21193 is a vulnerability in Android 13 where the VideoFrame component in VideoFrame.h can abort due to an integer overflow, potentially enabling remote information disclosure without user interaction. The CVE is listed in multiple sources (NVD, Red Hat, PRION, OSV) with the same basic de...
CVE-2023-21196
CVE-2023-21196 affects Android 13 with a flaw in btm_ble_batchscan_filter_track_adv_vse_cback (btm_ble_batchscan.cc). A missing bounds check causes an out-of-bounds read, enabling local information disclosure on the Bluetooth server and requiring System-level privileges for exploitation; no user ...
CVE-2023-21211
CVE-2023-21211 affects Android 13 and is described across multiple sources as a vulnerability in multiple files that enables an out-of-bounds read caused by a heap buffer overflow. The impact is local information disclosure with no additional execution privileges required, and exploitation does n...
CVE-2023-21392
CVE-2023-21392 concerns a memory corruption vulnerability in Bluetooth, caused by a use-after-free in the Bluetooth stack that can enable local privilege escalation when pairing/connecting to a Bluetooth device. Exploitation does not require user interaction and does not need pre-existing executi...
CVE-2023-21399
CVE-2023-21399 affects Google Pixel devices (Pixel bulletin: GSC component) and is described as a logic-error–driven bypass of cryptographic guarantees that enables local privilege escalation with no user interaction. Impact: Elevation of Privilege, Local; exploitability is listed as high with lo...
CVE-2023-35694
CVE-2023-35694 corresponds to an out-of-bounds read in DMPixelLogger_ProcessDmCommand within DMPixelLogger.cpp. The issue allows remote information disclosure without extra execution privileges and does not require user interaction. Documents consistently describe a bounds-check omission as the r...
CVE-2023-52341
Technical details (affected products, versions, root cause, impact, and mitigation) are not publicly provided in the supplied documents. Monitor for updates.
CVE-2024-32916
CVE-2024-32916 describes an Information Disclosure in the fvp_freq_histogram_init function of fvp.c, caused by uninitialized data. This yields local information disclosure with no additional execution privileges required and no user interaction needed. Multiple sources (NVD, Red Hat CVE page, CVE...
CVE-2024-44099
The CVE-2024-44099 entry describes a local information-disclosure vulnerability caused by an insecure default value that enables a local bypass of user interaction with no privileges. It is associated with Google Pixel devices (notably listed under the Pixel update bulletin) and is categorized as...
CVE-2024-47013
CVE-2024-47013 is described across multiple sources as a flaw in the PMU firmware path (pmucal_rae_handle_seq_int in flexpmu_cal_rae.c) where uninitialized data allows an arbitrary write, enabling local privilege escalation with no user interaction. Documents consistently note the issue affects P...
CVE-2024-47019
CVE-2024-47019 affects Google Pixel devices via a buffer/read bounds issue in ProtocolEmbmsSaiListAdapter::Init() inside protocolembmsadapter.cpp. The vulnerability is an out-of-bounds read caused by a missing bounds check, potentially leading to local information disclosure and baseband firmware...
CVE-2024-47021
CVE-2024-47021 affects Google Pixel devices and stems from a missing bounds check in sms_ExtractCbLanguage within sms_CellBroadcast.c. The vulnerability enables a potential out-of-bounds read, leading to remote information disclosure without requiring user interaction or additional privileges. Th...
CVE-2024-56184
CVE-2024-56184 describes a vulnerability in static long dev_send of tipc_dev_ql where an incorrect bounds check leads to an out-of-bounds read. This can cause local information disclosure without requiring privileges or user interaction. The vulnerability is documented across multiple sources (in...
CVE-2025-0079
CVE-2025-0079 describes a logic error in Android's Bluetooth stack (avdtp/avctp) that could allow unencrypted channels, enabling local privilege escalation with user privileges required and no user interaction. Connected documents indicate this is addressed in the Android security bulletin for 20...
CVE-2025-0080
The CVE-2025-0080 issue affects Android’s installation confirmation dialog, where tapjacking/overlay leads to local privilege escalation without extra execution privileges or user interaction. The vulnerability targets the Android framework and can be exploited by overlaying the dialog in multipl...
CVE-2025-0093
CVE-2025-0093 affects the Android Bluetooth stack, with a root cause in AdapterService.java: handleBondStateChanged missing a permission check, enabling information disclosure without extra execution privileges. Exploitation requires user interaction; impact is information disclosure via Bluetoot...
CVE-2025-22403
CVE-2025-22403 describes a use-after-free in the Android Bluetooth SDP discovery path, specifically in the function and file sdp_snd_service_search_req of sdp_discovery.cc. The issue could allow remote code execution with no privileges and no user interaction, as stated in multiple sources. Publi...
CVE-2025-22406
CVE-2025-22406 relates to Google Android’s Bluetooth stack, specifically the function bnepu_check_send_packet in bnep_utils.cc . The issue is described as a use-after-free that could enable code execution and local privilege escalation with no additional privileges or user interaction . Multiple ...
CVE-2025-22409
CVE-2025-22409 is a local Elevation of Privilege in Android-related code caused by a use-after-free in rfc_send_buf_uih within rfc_ts_frames.cc, enabling arbitrary code execution with no extra privileges and no user interaction. Connected sources confirm the vulnerability class and the affected f...
CVE-2009-1754
The CVE-2009-1754 entry describes Android 1.5 (CRB42) allowing a package to share a UID without proper verification of developer certificates during installation. This enables a remote, user‑assisted attacker to access data from other apps by installing a package that uses a sharedUserId with arb...
CVE-2015-6626
Affected software: Android libstagefright (mediaserver) prior to 5.1.1 LMY48Z and 6.0 prior to 2015-12-01. Root cause: information disclosure vulnerability allowing remote attackers to obtain sensitive data and bypass an unspecified protection mechanism via unknown vectors (Signature/SignatureOrS...
CVE-2018-11987
CVE-2018-11987 describes a vulnerability affecting all CAF Android releases that use the Linux kernel. In boot, an unlikely memory allocation failure in the secure pool can cause a wrong-pointer access, potentially leading to a kernel panic. The affected surface is the secure pool management duri...
CVE-2018-9425
CVE-2018-9425 affects the Android Platform (Platform) on Android 10, where a missing permission check enables bypass of user interaction requirements, causing local escalation of privilege without extra execution privileges. The issue is categorized as Elevation of Privilege (EoP) with local atta...
CVE-2019-2214
CVE-2019-2214 affects the Linux/Android kernel binder subsystem. In binder_transaction of binder.c, there is an out-of-bounds write due to a missing bounds check, allowing local escalation of privilege without additional execution privileges or user interaction. Affected software appears in Andro...
CVE-2019-9243
CVE-2019-9243 affects wpa_supplicant_8 in Android 10. The vulnerability is an out-of-bounds read caused by a missing bounds check in a component of wpa_supplicant_8, leading to local information disclosure without requiring privileges; no user interaction is needed. Several connected records corr...
CVE-2019-9388
CVE-2019-9388 affects Android 10 Bluetooth: a missing bounds check causes an out-of-bounds read in the Bluetooth service, enabling remote information disclosure without user interaction. Impact is information disclosure with HIGH/Partial confidentiality impact per CVSS vectors. Exploitation statu...
CVE-2019-9398
CVE-2019-9398 affects the Android 10 Bluetooth stack. The issue is a missing bounds check in Bluetooth that can allow a remote attacker to cause a denial of service without user interaction. Impact is a DoS, with network-based exploitation. Exploitation status is not described in the provided mat...
CVE-2019-9401
CVE-2019-9401 affects Android 10 Bluetooth with a missing bounds check in a Bluetooth component, enabling remote Denial of Service over the network without user interaction or privileges. The CVSSv3.1 base score is 7.5 (Network, Privileges None, UI None, Availability High; scope Unchanged). Conne...