8153 matches found
CVE-2019-2129
CVE-2019-2129 affects Android's Media/MR components (TextDescriptions.cpp, extract3GPPGlobalDescriptions) with an out-of-bounds read that can lead to remote information disclosure. Impact: no execution privileges required; user interaction is needed. Affected Android versions include 7.0–9. Patch...
CVE-2019-9368
CVE-2019-9368 affects Android 10's Bluetooth stack, where a missing bounds check enables a local information-disclosure via an out-of-bounds read. Impact: partial confidentiality loss with no exploitation privileges or user interaction required. Affected product: Android 10 (Android ID A-79883568...
CVE-2020-0114
CVE-2020-0114 describes an Elevation of Privilege in Android where a flawed PendingIntent in KeyguardSliceProvider.java can enable local escalation to act with System UI privileges. Affected software is Android 10 (System/Framework components detailed in the June 2020 Android Security Bulletin). ...
CVE-2020-0261
CVE-2020-0261 affects the Android kernel (C2 flame devices) with a seccomp bypass caused by a missing configuration file, enabling local elevation of privilege without user interaction. The vulnerability impact is described as high, with local exploitability and complete confidentiality/integrity...
CVE-2021-0380
CVE-2021-0380 affects Android 11 via DcTracker.java onReceive, where a missing permission check allows triggering a provisioning URL and altering telephony settings, enabling local elevation of privilege during onboarding without extra privileges. Exploitation requires no user interaction per the...
CVE-2021-1036
CVE-2021-1036 corresponds to an elevation-of-privilege vulnerability in Android’s LocationSettingsActivity via a tapjacking/overlay attack. Public records across NVD, Red Hat, CNVD and related sources confirm: affected products are Android 9–12 (and specifically AAOS references) with the vulnerab...
CVE-2021-1037
The CVE-2021-1037 issue concerns a broadcast from the DevicePickerFragment when a new device is paired that lacks permission checks. Affected software: Android 9–12. Vulnerable component/behavior: the DevicePickerFragment broadcast is listenable by any app without BLUETOOTH permissions, enabling ...
CVE-2021-25339
The CVE-2021-25339 entry relates to Samsung mobile devices with an improper address validation in HArx. Root cause stated: incorrect address validation can allow memory corruption in EL2 when the kernel is compromised. Affected scope is Samsung mobile devices prior to SMR Mar-2021 Release 1; expl...
CVE-2022-20277
CVE-2022-20277 affects the Android framework component DevicePolicyManager. The issue is a side-channel information disclosure that enables an app to determine whether another app is installed without needing query permissions, leading to local information disclosure without extra execution privi...
CVE-2022-20288
In Android 13, CVE-2022-20288 affects AppSearchManagerService and describes a side-channel information disclosure allowing a possible check if an app is installed without query permissions. Impact is local information disclosure with no additional execution privileges required; attack vector is L...
CVE-2022-20291
CVE-2022-20291 affects Android 13 (AppOpsService) and enables a side-channel to determine whether an app is installed without query permissions, leading to local information disclosure with no user interaction. No exploit code is provided in the documents. Android 13 security notes indicate fixes...
CVE-2022-20298
CVE-2022-20298 affects Android 13 ContentService. The issue stems from a missing permission check in ContentService, enabling an attacker to determine whether an account exists on the device and potentially disclose local information. Exploitation is local and does not require user interaction, w...
CVE-2022-20302
CVE-2022-20302 concerns a sandbox-escape in Android 13 Settings that can bypass factory reset protections, allowing local privilege escalation with physical access and no user interaction. Affected software is Android 13; the issue originates from the Settings component and is described consisten...
CVE-2022-20310
The CVE-2022-20310 entry concerns Android 13 Telecomm. A missing permission check could allow disclosure of registered self‑managed phone accounts, causing local information disclosure. Exploitation requires user privileges but does not require user interaction. The issue is categorized under Tel...
CVE-2022-20318
CVE-2022-20318 affects Google's Android 13, specifically the PackageInstaller component. The issue arises from a side-channel information disclosure that allows a local attacker to determine whether an app is installed without any query permissions. Exploitation does not require user interaction,...
CVE-2022-20319
CVE-2022-20319 affects Android 13 via DreamServices, where a confused deputy could launch arbitrary protected activities, causing local escalation of privilege. Exploitation is described as local (attack vector: LOCAL) with low privileges required and no user interaction needed, potentially eleva...
CVE-2022-26452
CVE-2022-26452 affects the isp component, describing a use-after-free caused by improper locking. The vulnerability enables local escalation of privilege with System execution privileges required and does not require user interaction. The available connected documents consistently cite a patch id...
CVE-2022-26466
The CVE-2022-26466 entry concerns the Mediatek audio IPI component. The root cause is an integer overflow that enables an out-of-bounds write, resulting in local privilege escalation with SYSTEM privileges required and no user interaction needed. Public references indicate a patch identified as A...
CVE-2022-28784
CVE-2022-28784 describes a path traversal vulnerability in Samsung Galaxy Themes prior to SMR May-2022 Release 1. The issue stems from incorrect file path validation logic, allowing a system user to list file names in arbitrary directories. Affected component: Galaxy Themes (on Samsung devices) w...
CVE-2022-30723
CVE-2022-30723 affects Samsung Mobile devices with Bluetooth prior to SMR Jun-2022 Release 1. The root cause is a broadcast of a BluetoothDevice object via activateVoiceRecognitionWithDevice without proper receiver restrictions, leading to leakage of the connected device’s MAC address. Impact is ...
CVE-2022-30750
CVE-2022-30750 concerns Samsung SemWifiApClient prior to SMR Jul-2022 Release 1, with an improper access control vulnerability in the updateLastConnectedClientInfo function. The issue could allow an attacker to access the Wi‑Fi AP client MAC address of devices that connected to the AP. Connected ...
CVE-2022-32621
CVE-2022-32621 concerns MediaTek isp component: a race condition can cause an out-of-bounds write, enabling local privilege escalation with SYSTEM privileges. Exploitation reportedly does not require user interaction, and an in-place patch is available (Patch ID ALPS07310829; Issue ID ALPS0731082...
CVE-2022-32623
CVE-2022-32623 concerns the mdp component, with an out-of-bounds write caused by incorrect error handling. The issue can enable local escalation of privilege with system execution privileges required, and does not require user interaction to exploit. The patch reference provided is ALPS07342114 (...
CVE-2022-33689
The CVE-2022-33689 entry concerns Samsung TelephonyUI with an improper access control issue. Affected software: TelephonyUI prior to the SMR July 2022 Release 1. Root cause: lack of proper permission checks allows an unprotected binder call to change the device’s preferred network type. Impact: a...
CVE-2022-39100
CVE-2022-39100: A missing permission check in the power management service is described across multiple sources (notably UNISOC chipset context). Affected component is the power management service; root cause is improper authorization, allowing setup with no additional execution privileges. Impac...
CVE-2022-39897
The CVE-2022-39897 issue affects Samsung Kernel prior to SMR Dec-2022 Release 1, enabling an attacker with local access to leak kernel address information via system logs, i.e., an information disclosure vulnerability. Documented impact: kernel address data exposure with impact on confidentiality...
CVE-2022-39906
Impermissible access control in SecTelephonyProvider prior to SMR Dec-2022 Release 1 allows local attackers to access message information. Affected component: SecTelephonyProvider. Root cause: improper access control. Impact: exposure of message information (local access). Remediation: update to ...
CVE-2022-42762
CVE-2022-42762 describes a local denial-of-service vulnerability in the WLAN subsystem due to a missing bounds check in the WLAN driver (UNISOC chipset context appears in multiple sources). The flaw can be triggered locally and could impact WLAN services. Connected sources corroborate the basic i...
CVE-2022-42775
CVE-2022-42775 involves the UNISOC camera driver, where improper locking can cause memory corruption and a local kernel denial of service. Concrete details across connected sources reiterate the vulnerability class but do not specify affected products/versions or a confirmed remediation. In summa...
CVE-2022-42782
The CVE-2022-42782 entry concerns a missing permission check in the WLAN driver that can lead to local information disclosure. Connected sources (Red Hat, NVD, CNNVD, CVE listings) confirm the issue centers on the WLAN driver of the affected chipset; they do not provide an explicit patched versio...
CVE-2022-47323
CVE-2022-47323 affects the WLAN driver due to missing parameter checks, enabling local denial of service in WLAN services. The issue is documented with local-attack vector and impact on availability (NVD CVSS 3.1 base 5.5; CNA CVSS 3.1 base 6.4), stemming from insufficient input validation in the...
CVE-2022-47332
The CVE-2022-47332 issue concerns a possible missing permission check in the wlan driver, leading to local information disclosure. Multiple connected sources (e.g., Red Hat advisory, NVD entry, CNNVD) describe the vulnerability as a privilege-check gap in the wlan driver that could enable an atta...
CVE-2022-47363
CVE-2022-47363 describes a local denial-of-service risk in the WLAN driver caused by a missing bounds check that can lead to an out-of-bounds read. Affected component is the WLAN driver, with impact described as local DoS in WLAN services. Several connected sources confirm the condition but do no...
CVE-2022-47480
CVE-2022-47480 concerns a missing permission check in the telephony service, causing a local denial of service with no extra privileges required. Documents refer to telephony modules (e.g., UNISOC chipsets) but do not specify affected products, versions, or a patch. The CVSSv3.1 base score is 5.5...
CVE-2022-48242
CVE-2022-48242 concerns the telephony service in UNISOC chipsets where a missing permission check can lead to local information disclosure without requiring additional execution privileges. The linked documents consistently describe a local-privilege-check failure in the telephony service module,...
CVE-2022-48372
CVE-2022-48372 affects the bootcp service in UNISOC chipsets, caused by a missing bounds check that enables an out-of-bounds write. The documented impact is local denial of service with System execution privileges required; attack is local and requires high privileges, with no user interaction. A...
CVE-2023-20630
CVE-2023-20630 affects the USB module on MediaTek chips. Root cause: a missing bounds check causing an out-of-bounds write. Impact: local escalation of privilege with System execution privileges required; no user interaction needed. Public exploitation details are not provided in the documents. R...
CVE-2023-20661
CVE-2023-20661 affects the wlan component (MediaTek-related stack) and is caused by an out-of-bounds write resulting from an integer overflow. The vulnerability can lead to local privilege escalation with System execution privileges required and does not require user interaction. Reported impact ...
CVE-2023-20745
The CVE-2023-20745 entry relates to the vcu module in MediaTek chips, where an out-of-bounds write can occur due to improper locking. This could enable local escalation of privilege to SYSTEM with no user interaction required. Available references consistently describe the issue as a local-privil...
CVE-2023-20751
CVE-2023-20751 affects the MediaTek keymange component, with a reported out-of-bounds write caused by a missing bounds check. This can lead to local escalation of privilege with SYSTEM execution privileges required, and no user interaction is needed. A patch is referenced (Patch ID: ALPS07825502;...
CVE-2023-20835
CVE-2023-20835 affects the camsys component and is described as a use-after-free introduced by a race condition, enabling local privilege escalation with System privileges required and no user interaction. Multiple connected records corroborate the issue, its local-exploitability, and the listed ...
CVE-2023-20836
CVE-2023-20836 affects the CAMSYS component. The vulnerability is an out-of-bounds read caused by a missing bounds check, which could lead to local information disclosure with System execution privileges; exploitation reportedly does not require user interaction. The documented patch reference is...
CVE-2023-21365
CVE-2023-21365 affects Android’s Phone app, where the Contacts component can enter a crash loop due to resource exhaustion. This leads to a local denial of service with User privileges required and no user interaction needed. Public details from the provided sources confirm the DoS impact and loc...
CVE-2023-32815
The CVE-2023-32815 issue affects the gnss service and is caused by improper input validation that can trigger an out-of-bounds read, potentially enabling local information disclosure with System execution privileges required. No user interaction is needed for exploitation. A patch is referenced (...
CVE-2023-40644
CVE-2023-40644 affects the Messaging component in UNISOC chipsets, due to a missing permission check that could allow local information disclosure without extra execution privileges. The issue is described with a CVSS v3.1 base score of 5.5 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N). Connected sources...
CVE-2023-45780
CVE-2023-45780 affects the Android Print Service. The issue stems from a logic error enabling a background activity launch, potentially causing local privilege escalation with no extra execution privileges required beyond user interaction. Documented impact covers confidentiality, integrity, and ...
CVE-2023-52343
CVE-2023-52343 concerns UNISOC chipsets with a vulnerability in the SecurityCommand message after security is activated. The root cause is improper input validation, which could lead to remote information disclosure without requiring additional execution privileges. Documents do not specify affec...
CVE-2024-20152
CVE-2024-20152 affects the WLAN STA driver and describes a reachable assertion caused by improper exception handling. The vulnerability permits local denial of service when a user with System privileges can trigger the condition, with no user interaction required. Reported patches include WCNCR00...
CVE-2025-20668
CVE-2025-20668 affects OpenSSH scp; a missing bounds check allows an out-of-bounds write that could enable local privilege escalation without user interaction. Several sources (including PT-2025-19332 and NVD) describe the issue and cite Patch ID ALPS09625562 and Issue ID MSV-3027, but provided d...
CVE-2025-32318
CVE-2025-32318: A heap buffer overflow in Skia can cause an out-of-bounds write, enabling remote elevation of privilege with no user interaction. CVSSv3.1: 8.8 (Network, Low evidence required, Privileges Low, Confidentiality/Integrity/Availability High). Android 16 security notes classify this en...