Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
GoogleAndroid10.0

1834 matches found

CVE
CVEadded 2023/05/09 2:15 a.m.62 views

CVE-2022-47470

In ext4fsfilter driver, there is a possible out of bounds read due to a missing bounds check. This could local denial of service with System execution privileges needed.

4.4CVSS4.6AI score0.00013EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.61 views

CVE-2019-2065

In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118143575

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.61 views

CVE-2019-9237

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-121325979

6.5CVSS6.4AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.61 views

CVE-2019-9322

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111128067

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.61 views

CVE-2019-9421

In libandroidfw, there is a possible OOB read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111215250

5CVSS5.3AI score0.00017EPSS
CVE
CVEadded 2020/01/08 7:15 p.m.61 views

CVE-2020-0007

In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8...

5.5CVSS5.1AI score0.00017EPSS
CVE
CVEadded 2020/05/14 9:15 p.m.61 views

CVE-2020-0103

In a2dp_aac_decoder_cleanup of a2dp_aac_decoder.cc, there is a possible invalid free due to memory corruption. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-9Andro...

10CVSS9.2AI score0.0301EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.61 views

CVE-2020-0187

In engineSetMode of BaseBlockCipher.java, there is a possible incorrect cryptographic algorithm chosen due to an incomplete comparison. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVer...

5.5CVSS5.8AI score0.00033EPSS
CVE
CVEadded 2020/09/17 4:15 p.m.61 views

CVE-2020-0389

In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Andro...

5.5CVSS5AI score0.00037EPSS
CVE
CVEadded 2020/09/17 4:15 p.m.61 views

CVE-2020-0395

In showNotification of EmergencyCallbackModeService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8....

5.5CVSS5AI score0.00017EPSS
CVE
CVEadded 2022/02/11 6:15 p.m.61 views

CVE-2022-23425

Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station.

9.8CVSS9.3AI score0.00147EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.61 views

CVE-2022-26093

Null pointer dereference vulnerability in parser_irot function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.

9.8CVSS9.4AI score0.0038EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.61 views

CVE-2022-27824

Improper size check of in sapefd_parse_meta_DESCRIPTION function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file

7.1CVSS6.7AI score0.00086EPSS
CVE
CVEadded 2022/10/14 7:15 p.m.61 views

CVE-2022-38670

In soundrecorder service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed.

7.8CVSS7.6AI score0.00131EPSS
CVE
CVEadded 2022/10/14 7:15 p.m.61 views

CVE-2022-38672

In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.

5.5CVSS5.4AI score0.00028EPSS
CVE
CVEadded 2022/12/06 7:15 a.m.61 views

CVE-2022-39131

In camera driver, there is a possible memory corruption due to improper locking. This could lead to local denial of service in kernel.

5.5CVSS5.5AI score0.00017EPSS
CVE
CVEadded 2023/05/09 2:15 a.m.61 views

CVE-2022-47486

In ext4fsfilter driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.6AI score0.00013EPSS
CVE
CVEadded 2023/03/07 9:15 p.m.61 views

CVE-2023-20621

In tinysys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664755; Issue ID: ALPS07664755.

6.7CVSS6.7AI score0.00011EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2018-9425

In Platform, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID...

7.8CVSS8.1AI score0.00014EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-2062

In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117660045

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9259

In the Bluetooth stack, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113575306

7.2CVSS7.2AI score0.00014EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9281

In GoogleContactsSyncAdapter, there is a possible path traversal due to improper input sanitization. This could lead to a bypass of user interaction requirements with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Andr...

7.5CVSS7.8AI score0.00177EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9299

In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112663886

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9363

In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-123584306

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9406

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112552517

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9408

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112380157

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.60 views

CVE-2019-9410

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112204443

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2020/03/10 9:15 p.m.60 views

CVE-2020-0085

In setBluetoothTethering of PanService.java, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege to activate tethering with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andro...

7.8CVSS8.2AI score0.00012EPSS
CVE
CVEadded 2020/09/17 4:15 p.m.60 views

CVE-2020-0391

In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: A...

7.8CVSS7.8AI score0.00187EPSS
CVE
CVEadded 2020/11/10 1:15 p.m.60 views

CVE-2020-0441

In Message and toBundle of Notification.java, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service requiring a device reset to fix with no additional execution privileges needed. User interaction is not needed for exploitation.Product...

7.8CVSS7.4AI score0.01743EPSS
CVE
CVEadded 2021/02/04 6:15 a.m.60 views

CVE-2021-26688

An issue was discovered on LG Wing mobile devices with Android OS 10 software. The biometric sensor has weak security properties. The LG ID is LVE-SMP-200030 (February 2021).

9.8CVSS9.3AI score0.00147EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.60 views

CVE-2022-26097

Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.

9.8CVSS9.4AI score0.00298EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.60 views

CVE-2022-26099

Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers.

9.1CVSS9AI score0.00298EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.60 views

CVE-2022-27574

Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attacker.

7.5CVSS6.9AI score0.00131EPSS
CVE
CVEadded 2022/10/14 7:15 p.m.60 views

CVE-2022-2985

In music service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed.

7.8CVSS7.6AI score0.00131EPSS
CVE
CVEadded 2022/06/07 6:15 p.m.60 views

CVE-2022-30715

Improper access control vulnerability in DofViewer prior to SMR Jun-2022 Release 1 allows attackers to control floating system alert window.

5.3CVSS5.2AI score0.00079EPSS
CVE
CVEadded 2022/12/08 4:15 p.m.60 views

CVE-2022-39908

TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write.

7.4CVSS7.2AI score0.00018EPSS
CVE
CVEadded 2023/04/11 12:15 p.m.60 views

CVE-2022-47337

In media service, there is a missing permission check. This could lead to local denial of service in media service.

5.5CVSS5.3AI score0.00022EPSS
CVE
CVEadded 2023/04/06 6:15 p.m.60 views

CVE-2023-20653

In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628168; Issue ID: ALPS07589144.

6.7CVSS6.7AI score0.00011EPSS
CVE
CVEadded 2023/04/06 6:15 p.m.60 views

CVE-2023-20654

In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628168; Issue ID: ALPS07589148.

6.7CVSS6.7AI score0.00011EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-2063

In libxaac, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116019594

8.8CVSS8.9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9272

In WiFi, there is a possible leak of WiFi state due to a permissions bypass. This could lead to a local information disclosure which could be used to determine device location with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: ...

5.5CVSS5.6AI score0.00013EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9295

In com.android.apps.tag, there is a possible bypass of user interaction requirements due to a missing permission check. This could lead to a to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Andro...

7.8CVSS8.1AI score0.00014EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9304

In libMpegTPDec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112662270

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9337

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112204376

6.5CVSS6.1AI score0.00279EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9380

In the settings UI, there is a possible spoofing vulnerability due to a missing permission check. This could lead to a user mistakenly changing permission settings with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Androi...

6.5CVSS6.8AI score0.00082EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9413

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111935831

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9422

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111214766

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.59 views

CVE-2019-9425

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-110846194

7.5CVSS7.6AI score0.00499EPSS
CVE
CVEadded 2022/04/11 8:15 p.m.59 views

CVE-2022-26094

Null pointer dereference vulnerability in parser_auxC function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.

9.8CVSS9.4AI score0.0038EPSS
Total number of security vulnerabilities1834