Android@12.0 Security Vulnerabilities and Issues — Page 32 of Android@12.0 CVE List

Lucene search

GoogleAndroid12.0

1893 matches found

CVE•added 2022/09/06 6:15 p.m.•37 views

CVE-2022-26455

In gz, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177858; Issue ID: ALPS07177858.

6.7CVSS6.8AI score0.00013EPSS

CVE•added 2022/12/05 3:15 p.m.•37 views

CVE-2022-32629

In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310774; Issue ID: ALPS07310774.

6.7CVSS6.7AI score0.0003EPSS

CVE•added 2023/01/03 9:15 p.m.•37 views

CVE-2022-32644

In vow, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494473; Issue ID: ALPS07494473.

6.4CVSS6.6AI score0.00038EPSS

CVE•added 2022/09/09 3:15 p.m.•37 views

CVE-2022-36841

A heap-based overflow vulnerability in PrepareRecogLibrary_Part function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

7.8CVSS7.5AI score0.00017EPSS

CVE•added 2023/01/04 10:15 a.m.•37 views

CVE-2022-39084

In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

6.7CVSS6.7AI score0.0005EPSS

CVE•added 2022/12/06 7:15 a.m.•37 views

CVE-2022-39101

In power management service, there is a missing permission check. This could lead to set up power management service with no additional execution privileges needed.

7.8CVSS7.5AI score0.00016EPSS

CVE•added 2022/10/07 3:15 p.m.•37 views

CVE-2022-39856

Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information.

4CVSS4AI score0.00025EPSS

CVE•added 2022/11/09 10:15 p.m.•37 views

CVE-2022-39882

Heap overflow vulnerability in sflacf_fal_bytes_peek function in libsmat.so library prior to SMR Nov-2022 Release 1 allows local attacker to execute arbitrary code.

8CVSS7.8AI score0.00015EPSS

CVE•added 2023/05/09 2:15 a.m.•37 views

CVE-2022-48248

In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.

7.8CVSS7.7AI score0.00036EPSS

CVE•added 2023/05/09 2:15 a.m.•37 views

CVE-2022-48383

.In srtd service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.

7.8CVSS7.7AI score0.00031EPSS

CVE•added 2023/06/06 6:15 a.m.•37 views

CVE-2022-48444

In telephony service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.

5.9CVSS5.4AI score0.00024EPSS

CVE•added 2023/03/07 9:15 p.m.•37 views

CVE-2023-20638

In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628537; Issue ID: ALPS07628537.

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2023/03/07 9:15 p.m.•37 views

CVE-2023-20643

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2023/04/06 6:15 p.m.•37 views

CVE-2023-20675

In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588569; Issue ID: ALPS07588569.

4.4CVSS4.2AI score0.00018EPSS

CVE•added 2023/05/15 10:15 p.m.•37 views

CVE-2023-20703

In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767853; Issue ID: ALPS07767853.

5.5CVSS5AI score0.0002EPSS

CVE•added 2023/05/15 10:15 p.m.•37 views

CVE-2023-20718

In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645181; Issue ID: ALPS07645181.

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2023/08/07 4:15 a.m.•37 views

CVE-2023-20789

In jpeg, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07693193; Issue ID: ALPS07693193.

4.4CVSS4.3AI score0.00014EPSS

CVE•added 2023/08/07 4:15 a.m.•37 views

CVE-2023-20816

In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07453589; Issue ID: ALPS07453589.

6.7CVSS6.7AI score0.00015EPSS

CVE•added 2023/07/12 9:15 a.m.•37 views

CVE-2023-30938

In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.

5.5CVSS5.2AI score0.00011EPSS

CVE•added 2023/12/04 4:15 a.m.•37 views

CVE-2023-32855

In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07909204; Issue ID: ALPS07909204.

6.7CVSS6.6AI score0.00029EPSS

CVE•added 2023/08/07 2:15 a.m.•37 views

CVE-2023-33907

In Contacts Service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges

5.5CVSS5.2AI score0.00011EPSS

CVE•added 2023/11/01 10:15 a.m.•37 views

CVE-2023-42641

In validationtools, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

5.5CVSS5.2AI score0.00016EPSS

CVE•added 2023/11/01 10:15 a.m.•37 views

CVE-2023-42646

In Ifaa service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

5.5CVSS5.2AI score0.00021EPSS

CVE•added 2024/04/08 3:15 a.m.•37 views

CVE-2023-52351

In ril service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

7.8CVSS6.7AI score0.00015EPSS

CVE•added 2024/11/04 2:15 a.m.•37 views

CVE-2024-20107

In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09124360; Issue ID: MSV-1823.

6.2CVSS6.2AI score0.00005EPSS

CVE•added 2024/11/04 2:15 a.m.•37 views

CVE-2024-20123

In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1569.

4.4CVSS6.2AI score0.0001EPSS

CVE•added 2021/12/17 5:15 p.m.•36 views

CVE-2021-0898

In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05672107; Issue ID: ALPS05672071.

6.7CVSS6.8AI score0.00018EPSS

CVE•added 2022/09/06 6:15 p.m.•36 views

CVE-2022-26460

In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032590; Issue ID: ALPS07032590.

6.7CVSS6.7AI score0.00016EPSS

CVE•added 2022/09/09 3:15 p.m.•36 views

CVE-2022-36844

A heap-based overflow vulnerability in HWR::EngJudgeModel::Construct() in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault.

7.8CVSS7.5AI score0.00017EPSS

CVE•added 2023/01/04 10:15 a.m.•36 views

CVE-2022-39085

In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

6.7CVSS6.7AI score0.0005EPSS

CVE•added 2022/10/07 3:15 p.m.•36 views

CVE-2022-39850

Improper access control in mum_container_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data.

3.3CVSS4AI score0.00029EPSS

CVE•added 2022/10/07 3:15 p.m.•36 views

CVE-2022-39854

Improper protection in IOMMU prior to SMR Oct-2022 Release 1 allows unauthorized access to secure memory.

7.8CVSS7.5AI score0.00017EPSS

CVE•added 2022/12/08 4:15 p.m.•36 views

CVE-2022-39894

Improper access control vulnerability in ContactListStartActivityHelper in Phone prior to SMR Dec-2022 Release 1 allows to access sensitive information via implicit intent.

4CVSS3.9AI score0.00048EPSS

CVE•added 2023/02/12 4:15 a.m.•36 views

CVE-2022-47328

In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.

6.4CVSS5.1AI score0.00023EPSS

CVE•added 2023/02/12 4:15 a.m.•36 views

CVE-2022-47329

In wlan driver, there is a possible missing permission check. This could lead to local information disclosure.

6.4CVSS5.1AI score0.00026EPSS

CVE•added 2023/08/07 2:15 a.m.•36 views

CVE-2022-47351

In camera driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.6AI score0.00009EPSS

CVE•added 2023/03/10 9:15 p.m.•36 views

CVE-2022-47457

In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.

5.5CVSS5.3AI score0.00022EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-47489

In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.0002EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-47498

In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.0001EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-48236

In MP3 encoder, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.6AI score0.00015EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-48237

In Image filter, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.0001EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-48245

In audio service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.

7.8CVSS7.7AI score0.00036EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-48382

In log service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.00011EPSS

CVE•added 2023/05/09 2:15 a.m.•36 views

CVE-2022-48387

the apipe driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.

4.4CVSS4.7AI score0.0001EPSS

CVE•added 2023/06/06 6:15 a.m.•36 views

CVE-2022-48440

In dialer service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges.

6.2CVSS5.4AI score0.00024EPSS

CVE•added 2023/03/07 9:15 p.m.•36 views

CVE-2023-20624

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2023/03/07 9:15 p.m.•36 views

CVE-2023-20642

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2023/04/06 6:15 p.m.•36 views

CVE-2023-20670

In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07648710; Issue ID: ALPS07648710.

6.7CVSS6.7AI score0.0002EPSS

CVE•added 2023/04/06 6:15 p.m.•36 views

CVE-2023-20680

In adsp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664785; Issue ID: ALPS07664785.

6.7CVSS6.7AI score0.00007EPSS

CVE•added 2023/04/06 6:15 p.m.•36 views

CVE-2023-20684

In vdec, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07671069; Issue ID: ALPS07671069.

6.4CVSS6.6AI score0.00023EPSS

Total number of security vulnerabilities1893