Google

Android

7776 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2025-27701

  • EPSS 0.01%
  • Veröffentlicht 27.05.2025 15:42:11
  • Zuletzt bearbeitet 24.07.2025 15:11:57

In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which is valid value after calling slice_map_array(). Later this values will be derefenced without prior NULL check, which can lead to local Temporary DoS or O...

8.4

CVE-2025-27700

  • EPSS 0.01%
  • Veröffentlicht 27.05.2025 15:41:52
  • Zuletzt bearbeitet 24.07.2025 15:12:15

There is a possible bypass of carrier restrictions due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.1

CVE-2024-56193

  • EPSS 0.01%
  • Veröffentlicht 27.05.2025 15:41:27
  • Zuletzt bearbeitet 24.07.2025 15:12:34

There is a possible disclosure of Bluetooth adapter details due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2025-20980

  • EPSS 0.01%
  • Veröffentlicht 07.05.2025 08:34:33
  • Zuletzt bearbeitet 02.10.2025 16:42:20

Out-of-bounds write in libsavscmn prior to Android 15 allows local attackers to cause memory corruption.

7.8

CVE-2025-20979

  • EPSS 0.01%
  • Veröffentlicht 07.05.2025 08:24:37
  • Zuletzt bearbeitet 02.10.2025 16:22:34

Out-of-bounds write in libsavscmn prior to Android 15 allows local attackers to execute arbitrary code.

5.5

CVE-2025-20665

  • EPSS 0.01%
  • Veröffentlicht 05.05.2025 02:49:18
  • Zuletzt bearbeitet 12.05.2025 18:15:44

In devinfo, there is a possible information disclosure due to a missing SELinux policy. This could lead to local information disclosure of device identifier with no additional execution privileges needed. User interaction is not needed for exploitati...

7.8

CVE-2025-20668

  • EPSS 0.01%
  • Veröffentlicht 05.05.2025 02:49:15
  • Zuletzt bearbeitet 07.05.2025 15:15:56

In scp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID:...

7

CVE-2025-20671

  • EPSS 0%
  • Veröffentlicht 05.05.2025 02:49:13
  • Zuletzt bearbeitet 07.05.2025 15:15:56

In thermal, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: A...

6.7

CVE-2025-20662

  • EPSS 0.01%
  • Veröffentlicht 07.04.2025 03:14:58
  • Zuletzt bearbeitet 14.04.2025 16:31:19

In PlayReady TA, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. P...

6.7

CVE-2025-20661

  • EPSS 0.01%
  • Veröffentlicht 07.04.2025 03:14:57
  • Zuletzt bearbeitet 14.04.2025 16:36:48

In PlayReady TA, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. P...