Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.22%
  • Veröffentlicht 17.06.2026 06:57:07
  • Zuletzt bearbeitet 17.06.2026 07:00:03

In Package Manager, there is a possible device lock controller bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.12%
  • Veröffentlicht 17.06.2026 06:49:10
  • Zuletzt bearbeitet 17.06.2026 06:49:10

In createSessionInternal of PackageInstallerService.java, there is a possible method to remove a DPC app from a managed device without DO consent due to desync from persistence. This could lead to local escalation of privilege if a user can install a...

  • EPSS 0.07%
  • Veröffentlicht 17.06.2026 05:53:48
  • Zuletzt bearbeitet 17.06.2026 05:53:48

In Contacts Provider, there is a possible way to access an incoming call's phone number and associated metadata due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User in...

  • EPSS 0.08%
  • Veröffentlicht 17.06.2026 05:53:47
  • Zuletzt bearbeitet 17.06.2026 05:53:47

In SettingsLib, there is a possible way to disable system components due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.08%
  • Veröffentlicht 17.06.2026 05:53:46
  • Zuletzt bearbeitet 17.06.2026 05:53:46

In multiple locations there is a possible provisioning bypass due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.09%
  • Veröffentlicht 17.06.2026 05:53:45
  • Zuletzt bearbeitet 17.06.2026 05:53:45

In multiple locations, there is a possible 3rd party passkey entry pairing approval due to a missing permission check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interact...

  • EPSS 0.08%
  • Veröffentlicht 17.06.2026 05:53:44
  • Zuletzt bearbeitet 17.06.2026 05:53:44

In overrideConfig of CarrierConfigLoader.java, there is a possible way to bypass UID check due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

  • EPSS 0.19%
  • Veröffentlicht 17.06.2026 05:53:43
  • Zuletzt bearbeitet 17.06.2026 05:53:43

In multiple functions of btm_sec.cc, there is a possible way for an attacker to intercept SMS messages due to a logic error in the code. This could lead to remote information disclosure with no additional execution privileges needed. User interaction...

  • EPSS 0.17%
  • Veröffentlicht 16.06.2026 18:51:35
  • Zuletzt bearbeitet 16.06.2026 20:42:25

In several functions of the RTCP packet decoder, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exp...

  • EPSS 0.23%
  • Veröffentlicht 16.06.2026 18:51:34
  • Zuletzt bearbeitet 16.06.2026 20:42:25

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.