Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.09%
  • Veröffentlicht 02.03.2026 18:42:33
  • Zuletzt bearbeitet 06.03.2026 04:16:02

In writeToParcel of WindowInfo.cpp, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...

Medienbericht
  • EPSS 0.58%
  • Veröffentlicht 02.03.2026 18:42:32
  • Zuletzt bearbeitet 06.03.2026 04:16:02

In multiple locations, there is a possible out of bounds read and write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.1%
  • Veröffentlicht 02.03.2026 18:42:31
  • Zuletzt bearbeitet 06.03.2026 04:16:02

In onServiceDisconnected of KeyguardServiceDelegate.java, there is a possible partial bypass of app pinning allowing limited interaction with other apps without knowing the LSKF due to a missing permission check. This could lead to local information ...

  • EPSS 0.1%
  • Veröffentlicht 02.03.2026 18:42:29
  • Zuletzt bearbeitet 06.03.2026 04:16:01

In onStart of CompanionDeviceManagerService.java, there is a possible confused deputy due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

  • EPSS 0.1%
  • Veröffentlicht 02.03.2026 18:42:28
  • Zuletzt bearbeitet 06.03.2026 04:16:01

In loadDataAndPostValue of multiple files, there is a possible way to obscure permission usage due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not ...

  • EPSS 0.11%
  • Veröffentlicht 02.03.2026 18:42:27
  • Zuletzt bearbeitet 06.03.2026 04:16:01

In multiple locations, there is a possible information disclosure due to SQL injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.09%
  • Veröffentlicht 02.03.2026 18:42:26
  • Zuletzt bearbeitet 06.03.2026 04:16:00

In executeRequest of ActivityStarter.java, there is a possible launch anywhere due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

  • EPSS 0.19%
  • Veröffentlicht 02.03.2026 18:42:25
  • Zuletzt bearbeitet 06.03.2026 04:16:00

In loadDescription of DeviceAdminInfo.java, there is a possible persistent package due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for e...

  • EPSS 0.09%
  • Veröffentlicht 02.03.2026 18:42:24
  • Zuletzt bearbeitet 06.03.2026 04:16:00

In multiple locations, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.09%
  • Veröffentlicht 02.03.2026 18:42:23
  • Zuletzt bearbeitet 06.03.2026 04:16:00

In jump_to_payload of payload.rs, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploita...