Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-20469

  • EPSS 0.03%
  • Veröffentlicht 13.12.2022 16:15:15
  • Zuletzt bearbeitet 22.04.2025 15:15:58

In avct_lcb_msg_asmbl of avct_lcb_act.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege over Bluetooth with no additional execution privileges needed. User interaction is not n...

7.8

CVE-2022-20470

  • EPSS 0.01%
  • Veröffentlicht 13.12.2022 16:15:15
  • Zuletzt bearbeitet 22.04.2025 15:15:58

In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. Us...

5.5

CVE-2022-20471

  • EPSS 0.03%
  • Veröffentlicht 13.12.2022 16:15:15
  • Zuletzt bearbeitet 22.04.2025 15:15:58

In SendIncDecRestoreCmdPart2 of NxpMfcReader.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for ...

9.8

CVE-2022-20472

  • EPSS 44.85%
  • Veröffentlicht 13.12.2022 16:15:15
  • Zuletzt bearbeitet 22.04.2025 15:15:58

In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5

CVE-2021-0934

  • EPSS 0.03%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 22.04.2025 15:15:56

In findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Prod...

7

CVE-2021-39660

  • EPSS 0.03%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 22.04.2025 20:15:19

In TBD of TBD, there is a possible way to archive arbitrary code execution in kernel due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploita...

3.3

CVE-2022-39913

  • EPSS 0.02%
  • Veröffentlicht 08.12.2022 16:15:13
  • Zuletzt bearbeitet 21.11.2024 07:18:31

Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.

3.3

CVE-2022-39914

  • EPSS 0.02%
  • Veröffentlicht 08.12.2022 16:15:13
  • Zuletzt bearbeitet 21.11.2024 07:18:31

Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information.

5.5

CVE-2022-39897

  • EPSS 0.02%
  • Veröffentlicht 08.12.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:18:29

Exposure of Sensitive Information vulnerability in kernel prior to SMR Dec-2022 Release 1 allows attackers to access the kernel address information via log.

3.3

CVE-2022-39898

  • EPSS 0.02%
  • Veröffentlicht 08.12.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 07:18:29

Improper access control vulnerability in IIccPhoneBook prior to SMR Dec-2022 Release 1 allows attackers to access some information of usim.