Google

Android

7776 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-32320

  • EPSS 0.01%
  • Published 05.09.2025 16:10:08
  • Last modified 08.09.2025 16:39:26

In System UI, there is a possible way to view other users' images due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

8.8

CVE-2025-32318

  • EPSS 0.07%
  • Published 05.09.2025 16:10:07
  • Last modified 08.09.2025 16:39:18

In Skia, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2025-32317

  • EPSS 0.01%
  • Published 05.09.2025 16:10:06
  • Last modified 08.09.2025 16:39:05

In App Widget, there is a possible Information Disclosure due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2025-32316

  • EPSS 0.01%
  • Published 05.09.2025 16:10:04
  • Last modified 08.09.2025 16:38:55

In gralloc4, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

3.3

CVE-2025-26461

  • EPSS 0.01%
  • Published 05.09.2025 16:10:03
  • Last modified 08.09.2025 16:38:50

In Permission Manager, there is a possible way for the microphone privacy indicator to remain activated even after the user attempts to close the app due to a logic error in the code. This could lead to local escalation of privilege with no additiona...

5.5

CVE-2025-26434

  • EPSS 0.01%
  • Published 05.09.2025 16:10:02
  • Last modified 08.09.2025 16:38:44

In libxml2, there is a possible out of bounds read due to a buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2024-0028

  • EPSS 0.01%
  • Published 05.09.2025 16:10:01
  • Last modified 08.09.2025 16:38:34

In Audio Service, there is a possible way to obtain MAC addresses of nearby Bluetooth devices due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not ...

7.8

CVE-2025-32322

  • EPSS 0.01%
  • Published 04.09.2025 19:39:27
  • Last modified 05.09.2025 18:59:59

In onCreate of MediaProjectionPermissionActivity.java , there is a possible way to grant a malicious app a token enabling unauthorized screen recording capabilities due to improper input validation. This could lead to local escalation of privilege wi...

7.8

CVE-2025-26439

  • EPSS 0.01%
  • Published 04.09.2025 19:28:10
  • Last modified 05.09.2025 19:08:32

In getComponentName of AccessibilitySettingsUtils.java, there is a possible way to for a malicious Talkback service to be enabled instead of the system component due to a logic error in the code. This could lead to local escalation of privilege with ...

7.8

CVE-2025-26431

  • EPSS 0.01%
  • Published 04.09.2025 19:28:09
  • Last modified 05.09.2025 18:59:29

In setupAccessibilityServices of AccessibilityFragment.java, there is a possible way to hide an enabled accessibility service due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges n...