Android Security Vulnerabilities and Issues — Android CVE List

Lucene search

GoogleAndroid

36 matches found

CVE•added 2024/01/18 3:15 a.m.•61 views

CVE-2023-48350

In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00013EPSS

CVE•added 2024/01/02 3:15 a.m.•60 views

CVE-2023-32872

In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308607; Issue ID: ALPS08308607.

6.7CVSS6.7AI score0.00011EPSS

CVE•added 2024/01/18 3:15 a.m.•59 views

CVE-2023-48340

In video decoder, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00009EPSS

CVE•added 2024/01/18 3:15 a.m.•59 views

CVE-2023-48349

In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00013EPSS

CVE•added 2024/01/18 3:15 a.m.•57 views

CVE-2023-48341

In video decoder, there is a possible out of bounds read due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.4AI score0.00012EPSS

CVE•added 2024/01/02 3:15 a.m.•55 views

CVE-2023-32883

In Engineer Mode, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08282249; Issue ID: ALPS08282249.

6.7CVSS6.7AI score0.00011EPSS

CVE•added 2024/01/18 3:15 a.m.•55 views

CVE-2023-48351

In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00013EPSS

CVE•added 2024/01/18 3:15 a.m.•54 views

CVE-2023-48343

In video decoder, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00009EPSS

CVE•added 2024/01/18 3:15 a.m.•54 views

CVE-2023-48344

In video decoder, there is a possible out of bounds read due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.4AI score0.00012EPSS

CVE•added 2024/01/18 3:15 a.m.•54 views

CVE-2023-48348

In video decoder, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00009EPSS

CVE•added 2024/01/02 3:15 a.m.•52 views

CVE-2023-32891

In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07933038; Issue ID: MSV-559.

6.7CVSS6.7AI score0.00008EPSS

CVE•added 2024/01/18 3:15 a.m.•51 views

CVE-2023-48342

In media service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.7AI score0.00008EPSS

CVE•added 2024/01/02 3:15 a.m.•50 views

CVE-2023-32885

In display drm, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07780685; Issue ID: ALPS07780685.

6.7CVSS6.8AI score0.0001EPSS

CVE•added 2024/01/18 3:15 a.m.•50 views

CVE-2023-48352

In phasecheckserver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.5AI score0.00015EPSS

CVE•added 2024/01/02 3:15 a.m.•49 views

CVE-2023-32877

In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308070; Issue ID: ALPS08308070.

6.7CVSS6.7AI score0.0001EPSS

CVE•added 2024/01/02 3:15 a.m.•47 views

CVE-2023-32875

In keyInstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308607; Issue ID: ALPS08304217.

4.4CVSS4.3AI score0.00011EPSS

CVE•added 2024/01/02 3:15 a.m.•41 views

CVE-2023-32880

In battery, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308070; Issue ID: ALPS08308076.

4.4CVSS4.3AI score0.00011EPSS

CVE•added 2024/01/02 3:15 a.m.•41 views

CVE-2023-32884

In netdagent, there is a possible information disclosure due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944011; Issue ID: ALPS07944011.

6.7CVSS6.3AI score0.00011EPSS

CVE•added 2024/01/02 3:15 a.m.•40 views

CVE-2023-32878

4.4CVSS4.3AI score0.00005EPSS

CVE•added 2024/01/02 3:15 a.m.•40 views

CVE-2023-32881

In battery, there is a possible information disclosure due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308070; Issue ID: ALPS08308080.

4.4CVSS4.3AI score0.00011EPSS

CVE•added 2024/01/02 3:15 a.m.•40 views

CVE-2023-32889

In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01161825; Issue ID: MOLY01161825 (MSV-895).

7.5CVSS7.4AI score0.00929EPSS

CVE•added 2024/01/02 10:15 p.m.•39 views

CVE-2023-4164

There is a possible information disclosure due to a missing permission check. This could lead to local information disclosure of health data with no additional execution privileges needed.

8.4CVSS5.4AI score0.00019EPSS

CVE•added 2024/01/02 3:15 a.m.•37 views

CVE-2023-32879

6.7CVSS6.7AI score0.0001EPSS

CVE•added 2024/01/02 3:15 a.m.•33 views

CVE-2023-32876

4.4CVSS4.3AI score0.00011EPSS

CVE•added 2024/01/02 3:15 a.m.•33 views

CVE-2023-32882

In battery, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308070; Issue ID: ALPS08308616.

6.7CVSS6.8AI score0.00007EPSS

CVE•added 2024/01/18 3:15 a.m.•31 views

CVE-2023-48353

In vsp driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.8AI score0.00011EPSS

CVE•added 2024/01/18 3:15 a.m.•31 views

CVE-2023-48359

In autotest driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.8AI score0.00008EPSS

CVE•added 2024/01/18 3:15 a.m.•30 views

CVE-2023-48354

In telephone service, there is a possible improper input validation. This could lead to local information disclosure with no additional execution privileges needed

5.5CVSS5.2AI score0.00011EPSS

CVE•added 2024/01/18 3:15 a.m.•30 views

CVE-2023-48355

In jpg driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.8AI score0.0001EPSS

CVE•added 2024/01/18 3:15 a.m.•30 views

CVE-2023-48357

In vsp driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.8AI score0.0001EPSS

CVE•added 2024/01/18 3:15 a.m.•30 views

CVE-2023-48358

In drm driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.8AI score0.0001EPSS

CVE•added 2024/01/18 3:15 a.m.•29 views

CVE-2023-48345

In video decoder, there is a possible out of bounds read due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.4AI score0.00012EPSS

CVE•added 2024/01/18 3:15 a.m.•27 views

CVE-2023-48339

In jpg driver, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed

4.4CVSS4.4AI score0.0001EPSS

CVE•added 2024/01/18 3:15 a.m.•26 views

CVE-2023-48347

In video decoder, there is a possible out of bounds read due to improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.4AI score0.00012EPSS

CVE•added 2024/01/18 3:15 a.m.•25 views

CVE-2023-48346

In video decoder, there is a possible improper input validation. This could lead to local denial of service with no additional execution privileges needed

5.5CVSS5.4AI score0.00012EPSS

CVE•added 2024/01/18 3:15 a.m.•25 views

CVE-2023-48356

In jpg driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

4.4CVSS4.8AI score0.0001EPSS