8153 matches found
CVE-2015-6616
CVE-2015-6616 is a memory-corruption vulnerability in Android’s mediaserver. It affects Android versions prior to 5.1.1 LMY48Z and 6.0 prior to 2015-12-01, allowing remote attackers to execute arbitrary code or cause a denial of service via a crafted media file (internal bugs 24630158 and 2388280...
CVE-2015-6647
CVE-2015-6647 is a privilege-escalation in the Widevine QSEE TrustZone app on Android. A crafted app exploiting QSEECOM access could grant elevated privileges on devices running Android 5.x before 5.1.1 LMY49F and Android 6.0 before 2016-01-01. Mitigation/fixes are provided by Android patches: An...
CVE-2016-0825
The CVE-2016-0825 issue concerns the Widevine Trusted Application on Android 6.0.1 before 2016-03-01. According to the sources, an attacker with kernel access could disclose TrustZone secure-storage information, demonstrated by obtaining Signature or SignatureOrSystem permissions. The vulnerabili...
CVE-2016-5856
Technical details for CVE-2016-5856 are not publicly available in the provided documents. Monitor for updates.
CVE-2017-0421
CVE-2017-0421 is an information-disclosure vulnerability in the Android Framework APIs that could allow a local malicious app to bypass OS protections and access data it should not. Affected products/versions per the CVE entry include Android 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, and 7.1.1. In the conne...
CVE-2017-0541
CVE-2017-0541 is a remote code execution vulnerability in Android’s Mediaserver (sonivox) that can be triggered by processing a specially crafted media file, causing memory corruption within Mediaserver. Affected Android versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1; Android ID A-34031018...
CVE-2017-0678
CVE-2017-0678 is a remote code execution vulnerability in Android's media framework affecting Android 7.0, 7.1.1 and 7.1.2. The issue appears in the 2017 July Android Security Bulletin under Media framework, with patches released via the July 2017 patch levels (2017-07-01 and 2017-07-05). No expl...
CVE-2017-0809
The CVE-2017-0809 entry describes a remote code execution vulnerability in the Android media framework (libstagefright). Affected product: Android. Vulnerable component/file: Android’s media framework library libstagefright. Root cause: remote attacker could craft a file to trigger code execution...
CVE-2017-0812
CVE-2017-0812 is an elevation-of-privilege vulnerability in Google's Android media framework (audio hal). Affected products: Android 7.0, 7.1.1, 7.1.2, and 8.0 (Android ID A-62873231). The issue is categorized as EoP in the Media framework component and is documented in the Android Security Bulle...
CVE-2017-13208
CVE-2017-13208 affects Android via libnetutils/packet.c receive_packet, enabling a possible remote code execution through an out-of-bounds write on DHCP responses. Impacted Android versions: 5.1.1–8.1. Vector: network; no user interaction required; no additional privileges needed. The Android Sec...
CVE-2017-13261
CVE-2017-13261 affects Android Bluetooth via the BNEP implementation, specifically the bnep_process_control_packet path in bnep_utils.cc. The flaw is an out-of-bounds read caused by a missing bounds check, enabling remote information disclosure without user interaction over a Bluetooth network co...
CVE-2017-13280
CVE-2017-13280 affects the Android/libframesequence library, specifically the FrameSequence_gif function. The issue is an out-of-bounds read due to a missing bounds check, leading to a remote DoS without user interaction. Affected Android versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. The vul...
CVE-2017-13292
CVE-2017-13292 is a remote code execution vulnerability in the Broadcom bcmdhd Wi‑Fi driver affecting Android; root cause is an out-of-bounds write in wl_get_assoc_ies within wl_cfg80211.c due to an incorrect bounds check. This could allow an attacker to execute arbitrary code in the context of a...
CVE-2017-13323
CVE-2017-13323 is a Google/Android elevation-of-privilege flaw caused by an out-of-bounds write in String16.cpp due to an integer overflow. The Red Hat and CNVD entries restate the issue; Android/Pixel bulletin notes this CVE as EoP (Moderate) and indicates patches are included in the 2018-05-05 ...
CVE-2018-9431
CVE-2018-9431 : The connected documents confirm a local elevation of privilege due to improper input validation in OSUInfo.java (OSUInfo component). The impact is described as local Privilege Escalation without user interaction. No exploit pathways, affected product versions, or fix/patch details...
CVE-2018-9466
CVE-2018-9466 : A vulnerability in libxml2’s valid.c xmlSnprintfElementContent can cause an out-of-bounds write, enabling remote escalation of privilege in an unprivileged process with user interaction required. Public details across sources confirm the issue’s presence in libxml2 and describe th...
CVE-2019-2047
CVE-2019-2047 is an Android vulnerability in the UpdateLoadElement path of the ic.cc file, caused by a type confusion that can trigger an out-of-bounds write. This could allow remote code execution in the proxy auto-config (PAC) context, with no required privileges and no user interaction. The we...
CVE-2019-2062
Summary of CVE-2019-2062 : A vulnerability in the Android 10 libxaac library allows an out-of-bounds write due to a missing bounds check. This can enable remote code execution with user interaction required for exploitation, as reported in multiple sources (NVD/Red Hat/CNVD) and reflected in Andr...
CVE-2019-2205
CVE-2019-2205 affects Android 8.0–10 and is caused by a use-after-free in ProxyResolverV8::SetPacScript (proxy_resolver_v8.cc), leading to memory corruption and remote code execution without user interaction. Exploitation is network-based (no privileges required) with high impact on confidentiali...
CVE-2019-9295
CVE-2019-9295 affects com.android.apps.tag on Android 10. The vulnerability is described as a bypass of user interaction requirements due to a missing permission check, potentially enabling local escalation of privilege with user execution privileges. The exploitation note states that user intera...
CVE-2019-9299
CVE-2019-9299 affects the Android 10 Media Framework (libAACdec). The issue is an out-of-bounds write caused by an integer overflow, potentially enabling remote code execution. Exploitation requires user interaction and can be network-reachable per the CVE details. Remediation is to apply the And...
CVE-2019-9311
Summary (CVE-2019-9311): A vulnerability in Android 10’s Bluetooth stack can crash the device due to an integer overflow, enabling remote denial of service on incoming calls without user interaction. The issue affects the Bluetooth component and is exploitable over the network, with no privileges...
CVE-2019-9369
CVE-2019-9369 affects Android 10 Bluetooth code, where a use of an uninitialized variable could lead to local information disclosure without user interaction. The NVD/Red Hat/CNVD entries all describe the same issue; impact is information disclosure (confidentiality partial), with local attack ve...
CVE-2019-9410
CVE-2019-9410 affects the Android 10 libavc library, where information disclosure can occur due to uninitialized data in the media handling path. The vulnerability enables remote disclosure without additional code execution, with network as the attack surface and user interaction required for exp...
CVE-2019-9425
CVE-2019-9425 is an Android Bluetooth vulnerability described as an out-of-bounds read that can enable remote Denial of Service without user interaction. Affected: Android 10 devices. Root cause: missing bounds check in Bluetooth processing. Impact: DoS at network scope with high/medium severity ...
CVE-2021-0554
CVE-2021-0554 affects Android 11, where isBackupServiceActive in BackupManagerService.java lacks a required permission check, enabling local information disclosure without user interaction. Documented risk: local disclosure with no privileges beyond local access; attack complexity LOW. Remediatio...
CVE-2021-0982
CVE-2021-0982 affects Android 12 and is due to a missing permission check in getOrganizationNameForUser within DevicePolicyManagerService.java, leading to local information disclosure without requiring user interaction. The vulnerability enables disclosure of organization name information with lo...
CVE-2021-0997
CVE-2021-0997 affects Android 12; the issue is in GnssNetworkConnectivityHandler.java (handleUpdateNetworkState) where a log information disclosure enables local information disclosure with no extra privileges and without user interaction. Exploitation requires local access; impact is confidentia...
CVE-2021-1006
CVE-2021-1006 affects Android 12 where DatabaseManager.java functions leak Bluetooth MAC addresses via log information disclosure. The root cause is log exposure of MAC addresses, enabling local information disclosure with System privileges needed (no user interaction). Exploitation details are n...
CVE-2021-1008
CVE-2021-1008 affects Android 12; the issue is in addSubInfo of SubscriptionController.java, described as a logic error that could force a factory reset, yielding local denial of service with system privileges. Exploitation is stated as possible without user interaction. Connected documents corro...
CVE-2021-1022
CVE-2021-1022 : In Android 12, a missing null check in btif_in_hf_client_generic_evt (btif_hf_client.cc) can cause a Bluetooth service crash, enabling a remote DoS without user interaction. The issue is tied to the Bluetooth Hands-Free Profile client, with impact described as remote denial of ser...
CVE-2021-1027
CVE-2021-1027 affects Android 12, specifically the SurfaceFlinger component during setTransactionState. The root cause is improper casting in SurfaceFlinger that can allow arbitrary code execution in a privileged process, leading to local elevation of privilege with no extra execution privileges ...
CVE-2021-1028
CVE-2021-1028 : In Android 12, the vulnerability is in SurfaceFlinger.cpp within setClientStateLocked, where a use-after-free can trigger an out-of-bounds write. This leads to local privilege escalation with no extra execution privileges required and no user interaction. Public documents consiste...
CVE-2021-1034
CVE-2021-1034 affects Android 12 via the PhoneInterfaceManager.getLine1NumberForDisplay path. A missing permission check enables an app to infer whether another app is installed, causing local information disclosure without requiring additional execution privileges. The vulnerability stems from i...
CVE-2021-25340
CVE-2021-25340 concerns Samsung Keyboard prior to SMR Feb‑2021 Release 1, with an improper access control flaw that enables physically proximate attackers to change arbitrary settings during the Initialization State. The issue affects Samsung Keyboard software and is exploitable without user inte...
CVE-2021-39640
CVE-2021-39640 involves an out-of-bounds write in the Android kernel's dwc3 gadget ep0 queue function (__dwc3_gadget_ep0_queue) caused by improper locking. This vulnerability enables local privilege escalation with no user interaction, as documented across multiple sources (NVD, Red Hat, CNVD, OS...
CVE-2022-20252
CVE-2022-20252 is a vulnerability in Android 13’s PackageManager where an attacker can deduce whether an app is installed without query permissions due to a side-channel information disclosure. This enables local information disclosure with no extra execution privileges required; exploitation req...
CVE-2022-26097
CVE-2022-26097 affects the libsimba library, specifically the parser_unknown_property function, where a null pointer dereference can lead to an out-of-bounds write. The issue is exploitable remotely over a network with no authentication and no user interaction, and is reported to impact confident...
CVE-2022-26430
CVE-2022-26430 affects MediaTek devices with a mailbox type confusion leading to out-of-bounds write. This can enable local privilege escalation to SYSTEM level with no user interaction required. Patch ALPS07032521 (Issue ALPS07032521) referenced in multiple sources; no remediation details beyond...
CVE-2022-26465
CVE-2022-26465 relates to MediaTek audio IPI, where an incorrect bounds check can trigger an out-of-bounds write in the audio IPI component. The vulnerability could enable local escalation of privilege with SYSTEM execution privileges, and does not require user interaction for exploitation. A pat...
CVE-2022-26469
CVE-2022-26469 affects MediaTek’s MtkEmail module and describes a local privilege-escalation vulnerability caused by fragment injection. The issue permits escalation without requiring execution privileges and with no user interaction, aligning with a high impact (confidentiality, integrity, and a...
CVE-2022-28794
CVE-2022-28794 describes a sensitive information exposure in Samsung mobile devices. The issue concerns the low-battery dumpstate log, which can reveal SIM card information to a local attacker. The root cause is exposure of stored log data prior to SMR Jun-2022 Release 1, enabling local access to...
CVE-2022-38681
CVE-2022-38681 involves a vulnerability in the WLAN driver where a missing parameter check in the driver may allow a local attacker to trigger a denial of service in WLAN services. The available documents identify the affected component as the WLAN driver and cite a local denial of service as the...
CVE-2022-39124
The CVE-2022-39124 entry describes a vulnerability in the sensor driver where a missing bounds check enables an out-of-bounds write, leading to local denial of service in the kernel. Public sources consistently attribute this to the Unisoc sensor/ chipset context (e.g., SC9863A/SC9832E/SC7731E/T6...
CVE-2022-47360
The CVE-2022-47360 entry concerns a missing permission check in the log service, enabling local denial of service. Affected entity is the log service and the underlying root cause is insufficient access control. Documents consistently describe an impending local DoS impact but do not provide expl...
CVE-2022-48250
CVE-2022-48250 concerns UNISOC chipsets’ audio service where a missing permission check may allow local privilege escalation. The connected documents consistently describe a lack of privilege verification in the audio service as the root cause, with impact stated as local escalation of privilege ...
CVE-2023-20810
CVE-2023-20810 affects the IOMMU component in MediaTek platforms. Root cause: improper input validation in the IOMMU leading to potential local information disclosure with required system execution privileges. Exploitation described as local, with no user interaction needed. Impact per documents:...
CVE-2023-20827
CVE-2023-20827 affects the ims service, where a race condition can cause memory corruption leading to local privilege escalation with SYSTEM rights. Exploitation does not require user interaction, and a patch is identified (ALPS07937105). The available sources consistently describe the issue as a...
CVE-2023-20839
CVE-2023-20839 affects the imgsys component. The root cause is an out-of-bounds read due to missing valid range checking, leading to local information disclosure with system execution privileges required and user interaction for exploitation. The vulnerability is documented across multiple source...
CVE-2023-20996
CVE-2023-20996 affects Android 13 (Pixel devices) and is described as a DoS via an input validation flaw that can trigger a persistent reboot loop. The vulnerability enables local denial of service with no user interaction required and requires user privileges. Public details confirm the issue is...