Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-21102

Exploit
  • EPSS 0%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:30

In __efi_rt_asm_wrapper of efi-rt-wrapper.S, there is a possible bypass of shadow stack protection due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is ...

5.5

CVE-2023-21103

  • EPSS 0.03%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:30

In registerPhoneAccount of PhoneAccountRegistrar.java, uncaught exceptions in parsing persisted user data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5

CVE-2023-21104

  • EPSS 0.01%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:30

In applySyncTransaction of WindowOrganizer.java, a missing permission check could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-1...

7.8

CVE-2023-21106

  • EPSS 0.02%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:30

In adreno_set_param of adreno_gpu.c, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8

CVE-2023-21107

  • EPSS 0.01%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:30

In retrieveAppEntry of NotificationAccessDetails.java, there is a missing permission check. This could lead to local escalation of privilege across user boundaries with no additional execution privileges needed. User interaction is not needed for exp...

7.8

CVE-2023-21109

  • EPSS 0.01%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:30

In multiple places of AccessibilityService, there is a possible way to hide the app from the user due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

7.8

CVE-2023-21110

  • EPSS 0.02%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 18:15:31

In several functions of SnoozeHelper.java, there is a possible way to grant notifications access due to resource exhaustion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not need...

5.5

CVE-2023-21111

  • EPSS 0.02%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 31.01.2025 14:15:27

In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access to emergency services due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User i...

5.5

CVE-2023-21112

  • EPSS 0.02%
  • Veröffentlicht 15.05.2023 22:15:11
  • Zuletzt bearbeitet 24.01.2025 17:15:10

In AnalyzeMfcResp of NxpMfcReader.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitatio...

9.8

CVE-2021-0877

  • EPSS 0.05%
  • Veröffentlicht 15.05.2023 22:15:10
  • Zuletzt bearbeitet 24.01.2025 17:15:08

Product: AndroidVersions: Android SoCAndroid ID: A-273754094