Android@10.0 Security Vulnerabilities and Issues — Page 37 of Android@10.0 CVE List

CVE-2023-30934

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-30941

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-32788

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

3.3CVSS3.8AI score0.00025EPSS

CVE-2023-33880

In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-33886

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-33899

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-33901

In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE•added 2023/12/04 1:15 a.m.•26 views

CVE-2023-42689

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2023/12/04 1:15 a.m.•26 views

CVE-2023-42695

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2019/09/27 7:15 p.m.•25 views

CVE-2019-2151

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117495174

6.5CVSS6.4AI score0.00125EPSS

CVE•added 2019/09/27 7:15 p.m.•25 views

CVE-2019-2158

6.5CVSS6.4AI score0.00125EPSS

CVE•added 2021/09/27 12:15 p.m.•25 views

CVE-2021-0421

In memory management driver, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381235.

5.5CVSS5.1AI score0.00015EPSS

CVE•added 2021/06/11 3:15 p.m.•25 views

CVE-2021-25416

Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to create executable kernel page outside code area.

6.5CVSS6.3AI score0.00031EPSS

CVE•added 2023/11/01 10:15 a.m.•25 views

CVE-2022-48460

In setting service, there is a possible undefined behavior due to incorrect error handling. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00035EPSS

CVE•added 2023/07/12 9:15 a.m.•25 views

CVE-2023-33893

In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE•added 2023/07/12 9:15 a.m.•25 views

CVE-2023-33902

In bluetooth service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

5.5CVSS5.2AI score0.00033EPSS

CVE•added 2023/12/04 1:15 a.m.•25 views

CVE-2023-42692

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2021/06/11 3:15 p.m.•24 views

CVE-2021-25392

Improper protection of backup path configuration in Samsung Dex prior to SMR MAY-2021 Release 1 allows local attackers to get sensitive information via changing the path.

5.5CVSS5.9AI score0.00009EPSS

CVE-2023-30927

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-33890

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE-2023-33892

In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

4.4CVSS4.7AI score0.00011EPSS

CVE-2023-33896

In libimpl-ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

CVE•added 2023/12/04 1:15 a.m.•24 views

CVE-2023-42687

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2020/03/24 6:15 p.m.•23 views

CVE-2020-10844

An issue was discovered on Samsung mobile devices with O(8.x), P(9.x), and Q(10.0) software. There is an out-of-bounds read vulnerability in media.audio_policy. The Samsung ID is SVE-2019-16333 (February 2020).

6.5CVSS6.5AI score0.00105EPSS

CVE•added 2020/08/31 9:15 p.m.•23 views

CVE-2020-25047

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (released in China and India) software. The S Secure application does not enforce the intended password requirement for a locked application. The Samsung IDs are SVE-2020-16746, SVE-2020-16764 (August 2020).

5.5CVSS5.6AI score0.00019EPSS

CVE•added 2023/07/12 9:15 a.m.•23 views

CVE-2023-30931

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE•added 2023/07/12 9:15 a.m.•22 views

CVE-2023-32789

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

5.5CVSS5.2AI score0.00012EPSS

CVE•added 2023/12/04 1:15 a.m.•22 views

CVE-2023-42686

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2023/12/04 1:15 a.m.•22 views

CVE-2023-42694

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2023/07/12 9:15 a.m.•21 views

CVE-2023-33900

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

CVE•added 2023/07/12 9:15 a.m.•20 views

CVE-2023-33879

In music service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

3.3CVSS3.8AI score0.00025EPSS

CVE•added 2023/12/04 1:15 a.m.•20 views

CVE-2023-42688

In wifi service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed

CVE•added 2023/07/12 9:15 a.m.•18 views

CVE-2023-30930

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.