Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
GoogleAndroid10.0

1834 matches found

CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9240

In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-121150966

5CVSS5.3AI score0.00017EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9246

In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120428637

5CVSS5.3AI score0.00017EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9251

In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120274615

5CVSS5.3AI score0.00017EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9288

In libhidcommand_jni, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the USB service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Android Versions: Android-10 Andr...

6.8CVSS7.2AI score0.00035EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9293

In libstagefright, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117661116

6.5CVSS6.4AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9302

In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112661356

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9307

In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112661893

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9308

In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112661742

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9320

In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111761624

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9327

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112050583

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9329

In Bluetooth, there is a possible out of bounds read due to uninitialized data. This could lead to remote information disclosure, with no additional privileges required. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112917952

7.5CVSS7.5AI score0.0018EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9332

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-78286500

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9351

In SyncStatusObserver, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check. This could lead to local limited information disclosure with no additional execution privileges needed. User interaction is not needed for...

3.3CVSS4.4AI score0.00016EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9361

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111762807

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9362

In libSACdec, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426980

6.5CVSS6.4AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9395

In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116267405

7.5CVSS7.6AI score0.00499EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.33 views

CVE-2019-9463

In Platform, there is a possible bypass of user interaction requirements due to background app interception. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: ...

7.3CVSS7.7AI score0.00015EPSS
CVE
CVEadded 2020/03/10 8:15 p.m.33 views

CVE-2020-0059

In btm_ble_batchscan_filter_track_adv_vse_cback of btm_ble_batchscan.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...

5.5CVSS5.7AI score0.00044EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0128

In addPacket of AMPEG4ElementaryAssembler, there is an out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges required. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-...

7.5CVSS7.4AI score0.00312EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0134

In BnDrm::onTransact of IDrm.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-1...

5.5CVSS5.7AI score0.00017EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0135

In dump of RollbackManagerServiceImpl.java, there is a possible backup metadata exposure due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10An...

4.4CVSS5AI score0.00015EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0136

In multiple locations of Parcel.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: An...

7.8CVSS8.2AI score0.00015EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0139

In NDEF_MsgValidate of ndef_utils.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malformed NFC tag is provided by the firmware. System execution privileges are needed and user interaction is not needed for exploitation.Prod...

4.4CVSS5AI score0.00016EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0165

In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitat...

7.2CVSS7.2AI score0.00014EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0177

In connect() of PanService.java, there is a possible permissions bypass. This could lead to local escalation of privilege to change network connection settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android...

5.5CVSS6.5AI score0.00011EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0195

In ihevcd_iquant_itrans_recon_ctb of ihevcd_iquant_itrans_recon_ctb.c and related functions, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploita...

6.5CVSS6.6AI score0.00244EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0203

In freeIsolatedUidLocked of ProcessList.java, there is a possible UID reuse due to improper cleanup. This could lead to local escalation of privilege between constrained processes with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...

7.8CVSS8.1AI score0.00015EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0211

In SumCompoundHorizontalTaps of convolve_neon.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10An...

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0217

In RW_T4tPresenceCheck of rw_t4t.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-1413...

9.8CVSS9.3AI score0.00759EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.33 views

CVE-2020-0233

In main of main.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-150225255

7.8CVSS8.3AI score0.00015EPSS
CVE
CVEadded 2020/03/24 6:15 p.m.33 views

CVE-2020-10850

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. The secure bootloade has a buffer overflow of the USB buffer, leading to arbitrary code execution. The Samsung ID is SVE-2019-15872 (January 2020).

10CVSS9.8AI score0.00231EPSS
CVE
CVEadded 2020/04/08 4:15 p.m.33 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 (April 2020).

5.3CVSS5.4AI score0.00178EPSS
CVE
CVEadded 2020/07/07 2:15 p.m.33 views

CVE-2020-15581

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. The kernel logging feature allows attackers to discover virtual addresses via vectors involving shared memory. The Samsung ID is SVE-2020-17605 (July 2020).

5.3CVSS5.1AI score0.00091EPSS
CVE
CVEadded 2020/07/07 2:15 p.m.33 views

CVE-2020-15583

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. StickerProvider allows directory traversal for access to system files. The Samsung ID is SVE-2020-17665 (July 2020).

5.5CVSS5.6AI score0.00018EPSS
CVE
CVEadded 2020/08/31 9:15 p.m.33 views

CVE-2020-25048

An issue was discovered on Samsung mobile devices with Q(10.0) (with ONEUI 2.1) software. In the Lockscreen state, the Quick Share feature allows unauthenticated downloads, aka file injection. The Samsung ID is SVE-2020-17760 (August 2020).

4.6CVSS5.3AI score0.00021EPSS
CVE
CVEadded 2020/08/31 9:15 p.m.33 views

CVE-2020-25051

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) via AppInfo. The Samsung ID is SVE-2020-17758 (August 2020).

7.5CVSS7.6AI score0.00092EPSS
CVE
CVEadded 2020/08/31 9:15 p.m.33 views

CVE-2020-25057

An issue was discovered on LG mobile devices with Android OS 10 software. MDMService does not properly restrict APK installations. The LG ID is LVE-SMP-200011 (July 2020).

9.8CVSS9.2AI score0.00147EPSS
CVE
CVEadded 2020/08/31 9:15 p.m.33 views

CVE-2020-25059

An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. A service crash may occur because of incorrect input validation. The LG ID is LVE-SMP-200013 (July 2020).

7.5CVSS7.5AI score0.00113EPSS
CVE
CVEadded 2020/08/31 9:15 p.m.33 views

CVE-2020-25061

An issue was discovered on LG mobile devices with Android OS 9 and 10 software on the VZW network. lge_property allows property overwrites. The LG ID is LVE-SMP-200016 (July 2020).

9.8CVSS9.2AI score0.00147EPSS
CVE
CVEadded 2020/09/11 10:15 p.m.33 views

CVE-2020-25283

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. BT manager allows attackers to bypass intended access restrictions on a certain mode. The LG ID is LVE-SMP-200021 (September 2020).

9.8CVSS9.1AI score0.00129EPSS
CVE
CVEadded 2021/08/18 3:15 p.m.33 views

CVE-2021-0419

In memory management driver, there is a possible system crash due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05336713.

5.5CVSS5.4AI score0.00018EPSS
CVE
CVEadded 2021/10/25 2:15 p.m.33 views

CVE-2021-0613

In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05489178; Issue ID: ALPS05489178.

5.5CVSS5AI score0.00015EPSS
CVE
CVEadded 2021/10/25 2:15 p.m.33 views

CVE-2021-0616

In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561389; Issue ID: ALPS05561389.

5.5CVSS5.2AI score0.00012EPSS
CVE
CVEadded 2021/10/25 2:15 p.m.33 views

CVE-2021-0625

In ccu, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05594996; Issue ID: ALPS05594996.

7.2CVSS6.8AI score0.00032EPSS
CVE
CVEadded 2021/08/18 3:15 p.m.33 views

CVE-2021-0626

In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05687510; Issue ID: ALPS05687510.

6.7CVSS6.7AI score0.00019EPSS
CVE
CVEadded 2021/12/17 5:15 p.m.33 views

CVE-2021-0902

In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05672107; Issue ID: ALPS05656484.

4.4CVSS4.2AI score0.00016EPSS
CVE
CVEadded 2021/06/11 3:15 p.m.33 views

CVE-2021-25390

Intent redirection vulnerability in PhotoTable prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.

4CVSS5.7AI score0.00019EPSS
CVE
CVEadded 2021/09/09 7:15 p.m.33 views

CVE-2021-25458

NULL pointer dereference vulnerability in ION driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory corruption.

5.5CVSS5.4AI score0.00017EPSS
CVE
CVEadded 2021/10/06 6:15 p.m.33 views

CVE-2021-25468

A possible guessing and confirming a byte memory vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows attackers to read arbitrary memory address.

4.4CVSS4.7AI score0.00021EPSS
CVE
CVEadded 2021/11/05 3:15 a.m.33 views

CVE-2021-25503

Improper input validation vulnerability in HDCP prior to SMR Nov-2021 Release 1 allows attackers to arbitrary code execution.

6.7CVSS6.9AI score0.00018EPSS
Total number of security vulnerabilities1834