Google

Android

7926 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2026-20417

  • EPSS 0.02%
  • Veröffentlicht 02.02.2026 08:15:13
  • Zuletzt bearbeitet 03.02.2026 21:52:14

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID...

5.5

CVE-2026-20415

  • EPSS 0.02%
  • Veröffentlicht 02.02.2026 08:15:11
  • Zuletzt bearbeitet 03.02.2026 21:53:59

In imgsys, there is a possible memory corruption due to improper locking. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS103632...

6.7

CVE-2026-20414

  • EPSS 0.02%
  • Veröffentlicht 02.02.2026 08:15:09
  • Zuletzt bearbeitet 03.02.2026 21:54:32

In imgsys, there is a possible escalation of privilege due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ...

6.7

CVE-2026-20413

  • EPSS 0.04%
  • Veröffentlicht 02.02.2026 08:15:07
  • Zuletzt bearbeitet 03.02.2026 21:55:23

In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ...

7.8

CVE-2025-48647

  • EPSS 0.01%
  • Veröffentlicht 16.01.2026 18:19:02
  • Zuletzt bearbeitet 27.01.2026 20:18:31

In cpm_fwtp_msg_handler of cpm/google/lib/tracepoint/cpm_fwtp_ipc.c, there is a possible memory overwrite due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...

7.1

CVE-2025-36911

Medienbericht Exploit
  • EPSS 0%
  • Veröffentlicht 15.01.2026 17:41:57
  • Zuletzt bearbeitet 28.01.2026 05:16:08

In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user's conversations and location with no additional execution privileges needed. User interaction ...

6.7

CVE-2025-20807

  • EPSS 0.01%
  • Veröffentlicht 06.01.2026 02:15:44
  • Zuletzt bearbeitet 08.01.2026 19:20:46

In dpe, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: AL...

6.7

CVE-2025-20806

  • EPSS 0.01%
  • Veröffentlicht 06.01.2026 02:15:44
  • Zuletzt bearbeitet 08.01.2026 19:22:32

In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114...

6.7

CVE-2025-20805

  • EPSS 0.01%
  • Veröffentlicht 06.01.2026 02:15:44
  • Zuletzt bearbeitet 08.01.2026 19:22:41

In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114...

6.7

CVE-2025-20804

  • EPSS 0.01%
  • Veröffentlicht 06.01.2026 02:15:44
  • Zuletzt bearbeitet 08.01.2026 19:22:55

In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10198951;...