Google

Android

7776 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-36905

  • EPSS 0.01%
  • Veröffentlicht 04.09.2025 04:58:58
  • Zuletzt bearbeitet 05.09.2025 16:37:31

In gxp_mapping_create of gxp_mapping.c, there is a possible privilege escalation due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exp...

9.8

CVE-2025-36904

  • EPSS 0.03%
  • Veröffentlicht 04.09.2025 04:58:29
  • Zuletzt bearbeitet 05.09.2025 16:37:36

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-396458384.

7.8

CVE-2025-36903

  • EPSS 0.01%
  • Veröffentlicht 04.09.2025 04:58:03
  • Zuletzt bearbeitet 05.09.2025 16:37:42

In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

6.7

CVE-2025-36902

  • EPSS 0.01%
  • Veröffentlicht 04.09.2025 04:57:39
  • Zuletzt bearbeitet 05.09.2025 16:37:51

In syna_cdev_ioctl_store_pid() of syna_tcm2_sysfs.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for e...

8.8

CVE-2025-36901

  • EPSS 0.02%
  • Veröffentlicht 04.09.2025 04:56:59
  • Zuletzt bearbeitet 05.09.2025 16:38:04

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-396462223.

6.7

CVE-2025-36900

  • EPSS 0.01%
  • Veröffentlicht 04.09.2025 04:56:34
  • Zuletzt bearbeitet 05.09.2025 16:38:11

In lwis_test_register_io of lwis_device_test.c, there is a possible OOB Write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

8.4

CVE-2025-36899

  • EPSS 0.01%
  • Veröffentlicht 04.09.2025 04:56:16
  • Zuletzt bearbeitet 05.09.2025 16:38:22

There is a possible escalation of privilege due to test/debugging code left in a production build. This could lead to physical escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2025-36898

  • EPSS 0.01%
  • Veröffentlicht 04.09.2025 04:55:49
  • Zuletzt bearbeitet 05.09.2025 16:38:27

There is a possible escalation of privilege due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8

CVE-2025-36897

  • EPSS 0.18%
  • Veröffentlicht 04.09.2025 04:55:12
  • Zuletzt bearbeitet 05.09.2025 16:38:32

In unknown of cd_CnMsgCodecUserApi.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8

CVE-2025-36896

  • EPSS 0.03%
  • Veröffentlicht 04.09.2025 04:54:42
  • Zuletzt bearbeitet 05.09.2025 16:38:40

WLAN in Android before 2025-09-05 on Google Pixel devices allows elevation of privilege, aka A-394765106.