Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.17%
  • Veröffentlicht 16.12.2022 16:15:18
  • Zuletzt bearbeitet 18.04.2025 16:15:18

In ufdt_get_node_by_path_len of ufdt_convert.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploita...

  • EPSS 0.15%
  • Veröffentlicht 16.12.2022 16:15:18
  • Zuletzt bearbeitet 18.04.2025 16:15:18

In launchConfigNewNetworkFragment of NetworkProviderSettings.java, there is a possible way for the guest user to add a new WiFi network due to a missing permission check. This could lead to local escalation of privilege with no additional execution p...

  • EPSS 0.17%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 21.04.2025 14:15:24

In acquireFabricatedOverlayIterator, nextFabricatedOverlayInfos, and releaseFabricatedOverlayIterator of Idmap2Service.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System ...

  • EPSS 0.17%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 18.04.2025 16:15:15

In onPreferenceClick of AccountTypePreferenceLoader.java, there is a possible way to retrieve protected files from the Settings app due to a confused deputy. This could lead to local information disclosure with no additional execution privileges need...

  • EPSS 0.76%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 18.04.2025 16:15:15

In rw_t3t_act_handle_check_ndef_rsp of rw_t3t.cc, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for e...

  • EPSS 0.21%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 18.04.2025 16:15:15

In getMessagesByPhoneNumber of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed f...

  • EPSS 0.21%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 18.04.2025 16:15:16

In query of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: And...

  • EPSS 0.15%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 18.04.2025 16:15:16

In onCreate of AddAppNetworksActivity.java, there is a possible way for a guest user to configure WiFi networks due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User i...

  • EPSS 0.19%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 18.04.2025 16:15:16

In onCreate of various files, there is a possible tapjacking/overlay attack. This could lead to local escalation of privilege or denial of server with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidV...

  • EPSS 0.17%
  • Veröffentlicht 16.12.2022 16:15:17
  • Zuletzt bearbeitet 23.04.2025 20:15:38

In sdpu_find_most_specific_service_uuid of sdp_utils.cc, there is a possible way to crash Bluetooth due to a missing null check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for...