Android Security Vulnerabilities and Issues — Page 9 of Android CVE List

Lucene search

GoogleAndroid

493 matches found

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9381

In netd, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-122677612

7.5CVSS6.9AI score0.00366EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9393

In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116357965

7.5CVSS7.6AI score0.00499EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9394

7.5CVSS7.6AI score0.00499EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9404

7.5CVSS7.6AI score0.00499EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9411

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112204845

6.5CVSS6.5AI score0.00244EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9427

In Bluetooth, there is a possible information disclosure due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-110166350

5.5CVSS5.6AI score0.00019EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9440

In AOSP Email, there is a possible information disclosure due to a confused deputy. This could lead to local disclosure of the Email app's protected files with User execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-37637796

3.3CVSS4.5AI score0.00015EPSS

CVE•added 2019/09/27 7:15 p.m.•35 views

CVE-2019-9459

In libttspico, there is a possible OOB write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-79593569

9.8CVSS9.1AI score0.00762EPSS

CVE•added 2019/10/09 4:15 p.m.•34 views

CVE-2019-11341

On certain Samsung P(9.0) phones, an attacker with physical access can start a TCP Dump capture without the user's knowledge. This feature of the Service Mode application is available after entering the *#9900# check code, but is protected by an OTP password. However, this password is created local...

4.6CVSS4.6AI score0.00017EPSS

CVE•added 2019/04/19 8:29 p.m.•34 views

CVE-2019-2039

In rw_i93_sm_detect_ndef of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7....

5CVSS4.7AI score0.00036EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-2071

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117216549

8.8CVSS9AI score0.00409EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-2074

8.8CVSS9AI score0.00409EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-2143

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-114746174

6.5CVSS6.4AI score0.00125EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9238

In the NFC stack, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-121267042

6.9CVSS7.1AI score0.00012EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9266

In sensorservice, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-119501435

7.2CVSS7.2AI score0.00012EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9313

In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112005441

6.5CVSS6.5AI score0.00244EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9331

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112272279

7.5CVSS7.2AI score0.00312EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9333

6.5CVSS6.4AI score0.00244EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9409

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112272091

6.5CVSS6.5AI score0.00244EPSS

CVE•added 2019/09/27 7:15 p.m.•34 views

CVE-2019-9419