Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-40111

  • EPSS 0.02%
  • Veröffentlicht 15.02.2024 23:15:08
  • Zuletzt bearbeitet 29.03.2025 00:15:16

In setMediaButtonReceiver of MediaSessionRecord.java, there is a possible way to send a pending intent on behalf of system_server due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges neede...

5.5

CVE-2023-40112

  • EPSS 0.03%
  • Veröffentlicht 15.02.2024 23:15:08
  • Zuletzt bearbeitet 13.12.2024 20:52:00

In ippSetValueTag of ipp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of past print jobs or other print-related information, with no additional execution privileges needed. U...

5.5

CVE-2023-40113

  • EPSS 0.02%
  • Veröffentlicht 15.02.2024 23:15:08
  • Zuletzt bearbeitet 13.12.2024 20:49:29

In multiple locations, there is a possible way for apps to access cross-user message data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not neede...

7.8

CVE-2023-40114

  • EPSS 0.02%
  • Veröffentlicht 15.02.2024 23:15:08
  • Zuletzt bearbeitet 13.12.2024 20:18:49

In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

7.8

CVE-2023-40115

  • EPSS 0.05%
  • Veröffentlicht 15.02.2024 23:15:08
  • Zuletzt bearbeitet 13.12.2024 20:17:13

In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2023-40124

  • EPSS 0.02%
  • Veröffentlicht 15.02.2024 23:15:08
  • Zuletzt bearbeitet 13.12.2024 20:10:19

In multiple locations, there is a possible cross-user read due to a confused deputy. This could lead to local information disclosure of photos or other images with no additional execution privileges needed. User interaction is not needed for exploita...

7.8

CVE-2023-40100

  • EPSS 0.02%
  • Veröffentlicht 15.02.2024 23:15:07
  • Zuletzt bearbeitet 16.12.2024 19:32:42

In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploita...

7.8

CVE-2024-22012

  • EPSS 0.02%
  • Veröffentlicht 07.02.2024 16:15:47
  • Zuletzt bearbeitet 08.05.2025 19:15:57

there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

6.7

CVE-2024-20001

  • EPSS 0.03%
  • Veröffentlicht 05.02.2024 06:15:47
  • Zuletzt bearbeitet 15.05.2025 20:15:41

In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961601; Issue I...

6.7

CVE-2024-20002

  • EPSS 0.03%
  • Veröffentlicht 05.02.2024 06:15:47
  • Zuletzt bearbeitet 17.06.2025 14:15:28

In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961715; Issue I...