Google

Android

7776 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-27227

  • EPSS 0.07%
  • Published 11.03.2024 19:15:48
  • Last modified 25.03.2025 16:15:19

A malicious DNS response can trigger a number of OOB reads, writes, and other memory issues

9.8

CVE-2024-27228

  • EPSS 3.32%
  • Published 11.03.2024 19:15:48
  • Last modified 03.04.2025 15:54:42

there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5

CVE-2024-27229

  • EPSS 1.49%
  • Published 11.03.2024 19:15:48
  • Last modified 27.03.2025 19:15:47

In ss_SendCallBarringPwdRequiredIndMsg of ss_CallBarring.c, there is a possible null pointer deref due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed...

5.1

CVE-2024-27230

  • EPSS 0.02%
  • Published 11.03.2024 19:15:48
  • Last modified 03.04.2025 15:54:37

In ProtocolPsKeepAliveStatusAdapter::getCode() of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interactio...

7.8

CVE-2024-27233

  • EPSS 0%
  • Published 11.03.2024 19:15:48
  • Last modified 03.04.2025 15:54:31

In ppcfw_init_secpolicy of ppcfw.c, there is a possible permission bypass due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

8.4

CVE-2024-22005

  • EPSS 0.01%
  • Published 11.03.2024 19:15:47
  • Last modified 03.04.2025 15:50:01

there is a possible Authentication Bypass due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.3

CVE-2024-22006

  • EPSS 0.08%
  • Published 11.03.2024 19:15:47
  • Last modified 03.04.2025 15:53:01

OOB read in the TMU plugin that allows for memory disclosure in the power management subsystem of the device.

6.2

CVE-2024-22007

  • EPSS 0.03%
  • Published 11.03.2024 19:15:47
  • Last modified 03.04.2025 15:52:57

In constraint_check of fvp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2024-22008

  • EPSS 0.02%
  • Published 11.03.2024 19:15:47
  • Last modified 03.04.2025 15:52:53

In config_gov_time_windows of tmu.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...

7.1

CVE-2024-22009

  • EPSS 0.02%
  • Published 11.03.2024 19:15:47
  • Last modified 03.04.2025 15:52:46

In init_data of , there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.