Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
GoogleAndroid10.0

1834 matches found

CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-2077

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-114745929

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-2083

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117495362

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-2141

In libxaac there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112705155

8.8CVSS9AI score0.00409EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-2153

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112611181

6.5CVSS6.4AI score0.00125EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-2157

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112611363

6.5CVSS6.4AI score0.00125EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-2188

In the Easel driver, there is possible memory corruption due to race conditions. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-112309571

6.9CVSS7.2AI score0.0001EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9263

In telephony, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android I...

7.8CVSS8.1AI score0.00014EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9264

In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-116774502

6.5CVSS6.4AI score0.00125EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9286

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111213909

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9293

In libstagefright, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117661116

6.5CVSS6.4AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9320

In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111761624

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9323

In the Wallpaper Manager service, there is a possible information disclosure due to a missing permission check. Any application can access wallpaper image with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:...

5.3CVSS5.6AI score0.00107EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9326

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111215173

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9332

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-78286500

7.5CVSS7.2AI score0.00312EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9334

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112859934

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9379

In libstagefright, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-124329638

7.1CVSS6.8AI score0.00346EPSS
CVE
CVEadded 2019/09/27 7:15 p.m.31 views

CVE-2019-9399

The Print Service is susceptible to man in the middle attacks due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-115635664

5.9CVSS6AI score0.00195EPSS
CVE
CVEadded 2020/03/10 8:15 p.m.31 views

CVE-2020-0029

In the WifiConfigManager, there is a possible storage of location history which can only be deleted by triggering a factory reset. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Andro...

2.3CVSS3.5AI score0.0003EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0142

In rw_i93_sm_format of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

7.5CVSS7.4AI score0.00312EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0146

In btu_hcif_hardware_error_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product: Andr...

4.4CVSS4.9AI score0.00018EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0148

In btu_hcif_pin_code_request_evt, btu_hcif_link_key_request_evt, and btu_hcif_link_key_notification_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privile...

4.4CVSS5AI score0.00016EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0149

In btu_hcif_mode_change_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product: Android...

4.4CVSS4.9AI score0.00018EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0151

In avb_vbmeta_image_verify of avb_vbmeta_image.c there is a possible out of bounds read due to a missing bounds check. This could lead to a local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Andro...

4.4CVSS4.9AI score0.00018EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0152

In avb_vbmeta_image_verify of avb_vbmeta_image.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Androi...

4.4CVSS4.9AI score0.00018EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0162

In parseSampleAuxiliaryInformationOffsets of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: ...

6.5CVSS6.9AI score0.00345EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0164

In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Andr...

4.4CVSS4.9AI score0.00018EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0165

In phNxpNciHal_NfcDep_cmd_ext of phNxpNciHal_NfcDepSWPrio.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitat...

7.2CVSS7.2AI score0.00014EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0191

In ih264d_update_default_index_list() of ih264d_dpb_mgr.c, there is a possible out of bounds read due to a logic error. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10An...

6.5CVSS6.5AI score0.00244EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0192

In ih264d_decode_slice_thread of ih264d_thread_parse_decode.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersio...

6.5CVSS6.6AI score0.00244EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0217

In RW_T4tPresenceCheck of rw_t4t.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-1413...

9.8CVSS9.3AI score0.00759EPSS
CVE
CVEadded 2020/06/11 3:15 p.m.31 views

CVE-2020-0233

In main of main.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-150225255

7.8CVSS8.3AI score0.00015EPSS
CVE
CVEadded 2020/03/24 6:15 p.m.31 views

CVE-2020-10830

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Attackers can view notifications by entering many PINs in Lockdown mode. The Samsung ID is SVE-2019-16590 (March 2020).

2.4CVSS4.2AI score0.00018EPSS
CVE
CVEadded 2020/03/24 6:15 p.m.31 views

CVE-2020-10850

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. The secure bootloade has a buffer overflow of the USB buffer, leading to arbitrary code execution. The Samsung ID is SVE-2019-15872 (January 2020).

10CVSS9.8AI score0.00231EPSS
CVE
CVEadded 2020/04/08 4:15 p.m.31 views

CVE-2020-11602

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Google Assistant leaks clipboard contents on a locked device. The Samsung ID is SVE-2019-16558 (April 2020).

2.4CVSS4.2AI score0.00018EPSS
CVE
CVEadded 2020/04/08 4:15 p.m.31 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 (April 2020).

5.3CVSS5.4AI score0.00047EPSS
CVE
CVEadded 2020/12/18 9:15 a.m.31 views

CVE-2020-35550

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), Q(10.0), and R(11.0) software. Attackers can bypass Factory Reset Protection (FRP) via StatusBar. The Samsung ID is SVE-2020-17888 (December 2020).

9.8CVSS9.4AI score0.00147EPSS
CVE
CVEadded 2020/12/18 9:15 a.m.31 views

CVE-2020-35553

An issue was discovered on Samsung mobile devices with Q(10.0) and R(11.0) (Qualcomm SM8250 chipsets) software. They allows attackers to cause a denial of service (unlock failure) by triggering a power-shortage incident that causes a false-positive attack detection. The Samsung ID is SVE-2020-19678...

7.8CVSS7.4AI score0.00125EPSS
CVE
CVEadded 2021/10/25 2:15 p.m.31 views

CVE-2021-0411

In flv extractor, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561362; Issue ID: ALPS05561362.

5.5CVSS5AI score0.00017EPSS
CVE
CVEadded 2021/08/18 3:15 p.m.31 views

CVE-2021-0418

In memory management driver, there is a possible system crash due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05336706.

5.5CVSS5.4AI score0.00018EPSS
CVE
CVEadded 2021/09/27 12:15 p.m.31 views

CVE-2021-0422

In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381071.

5.5CVSS5.4AI score0.00013EPSS
CVE
CVEadded 2021/10/25 2:15 p.m.31 views

CVE-2021-0617

In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561391; Issue ID: ALPS05561391.

5.5CVSS5.2AI score0.00012EPSS
CVE
CVEadded 2021/11/18 3:15 p.m.31 views

CVE-2021-0620

In asf extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05489178; Issue ID: ALPS05561381.

5.5CVSS5.2AI score0.00012EPSS
CVE
CVEadded 2021/11/18 3:15 p.m.31 views

CVE-2021-0664

In ccu, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05827158; Issue ID: ALPS05827158.

6.7CVSS6.8AI score0.00041EPSS
CVE
CVEadded 2021/11/18 3:15 p.m.31 views

CVE-2021-0667

In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05670581; Issue ID: ALPS05670581.

6.7CVSS6.8AI score0.00018EPSS
CVE
CVEadded 2021/11/18 3:15 p.m.31 views

CVE-2021-0669

In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05681550; Issue ID: ALPS05681550.

7.2CVSS6.8AI score0.00015EPSS
CVE
CVEadded 2021/12/17 5:15 p.m.31 views

CVE-2021-0901

In apusys, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05672107; Issue ID: ALPS05664618.

6.7CVSS6.8AI score0.00018EPSS
CVE
CVEadded 2021/01/05 6:15 p.m.31 views

CVE-2021-22492

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Broadcom Bluetooth chipsets) software. The Bluetooth UART driver has a buffer overflow. The Samsung ID is SVE-2020-18731 (January 2021).

8.8CVSS8.8AI score0.0004EPSS
CVE
CVEadded 2021/04/23 3:15 p.m.31 views

CVE-2021-25382

An improper authorization of using debugging command in Secure Folder prior to SMR Oct-2020 Release 1 allows unauthorized access to contents in Secure Folder via debugging command.

6.1CVSS5.5AI score0.00041EPSS
CVE
CVEadded 2021/06/11 3:15 p.m.31 views

CVE-2021-25390

Intent redirection vulnerability in PhotoTable prior to SMR MAY-2021 Release 1 allows attackers to execute privileged action.

4CVSS5.7AI score0.00019EPSS
CVE
CVEadded 2021/07/08 2:15 p.m.31 views

CVE-2021-25426

Improper component protection vulnerability in SmsViewerActivity of Samsung Message prior to SMR July-2021 Release 1 allows untrusted applications to access Message files.

7.5CVSS7.4AI score0.00123EPSS
Total number of security vulnerabilities1834