Google

Android

7776 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-22408

  • EPSS 0.11%
  • Published 26.08.2025 22:48:52
  • Last modified 02.09.2025 18:01:02

In rfc_check_send_cmd of rfc_utils.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5

CVE-2025-22407

  • EPSS 0%
  • Published 26.08.2025 22:48:51
  • Last modified 02.09.2025 18:01:15

In hidd_check_config_done of hidd_conn.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for e...

8.4

CVE-2025-22406

  • EPSS 0.01%
  • Published 26.08.2025 22:48:50
  • Last modified 02.09.2025 18:01:27

In bnepu_check_send_packet of bnep_utils.cc, there is a possible way to achieve code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

8.4

CVE-2025-22405

  • EPSS 0.01%
  • Published 26.08.2025 22:48:49
  • Last modified 02.09.2025 18:01:37

In multiple locations, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

8.4

CVE-2025-22404

  • EPSS 0.01%
  • Published 26.08.2025 22:48:48
  • Last modified 02.09.2025 18:01:47

In avct_lcb_msg_ind of avct_lcb_act.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exp...

9.8

CVE-2025-22403

  • EPSS 0.11%
  • Published 26.08.2025 22:48:47
  • Last modified 02.09.2025 18:02:01

In sdp_snd_service_search_req of sdp_discovery.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for ...

7.5

CVE-2025-0093

  • EPSS 0.05%
  • Published 26.08.2025 22:48:46
  • Last modified 02.09.2025 18:02:11

In handleBondStateChanged of AdapterService.java, there is a possible unapproved data access due to a missing permission check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is neede...

6.5

CVE-2025-0092

  • EPSS 0.01%
  • Published 26.08.2025 22:48:45
  • Last modified 02.09.2025 18:02:26

In handleBondStateChanged of AdapterService.java, there is a possible permission bypass due to misleading or insufficient UI. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User in...

6.2

CVE-2025-0086

  • EPSS 0.01%
  • Published 26.08.2025 22:48:44
  • Last modified 02.09.2025 18:02:39

In onResult of AccountManagerService.java, there is a possible way to overwrite auth token due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not need...

8.8

CVE-2025-0084

  • EPSS 0.02%
  • Published 26.08.2025 22:48:43
  • Last modified 02.09.2025 18:02:53

In multiple locations, there is a possible out of bounds write due to a use after free. This could lead to remote code execution over Bluetooth, if HFP support is enabled, with no additional execution privileges needed. User interaction is not needed...