Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-20247

  • EPSS 0.26%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:26

In Media, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8

CVE-2022-20248

  • EPSS 0.02%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:26

In Settings, there is a possible way to connect to an open network bypassing DISALLOW_CONFIG_WIFI restriction due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User inte...

3.3

CVE-2022-20249

  • EPSS 0.01%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:26

In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed....

7.8

CVE-2022-20250

  • EPSS 0.02%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:26

In Messaging, there is a possible way to attach files to a message without proper access checks due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is nee...

3.3

CVE-2022-20251

  • EPSS 0.01%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:26

In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed....

3.3

CVE-2022-20252

  • EPSS 0.01%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:26

In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed...

9.8

CVE-2022-20365

  • EPSS 0.15%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:40

Product: AndroidVersions: Android kernelAndroid ID: A-229632566References: N/A

6.7

CVE-2022-20366

  • EPSS 0.02%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:40

In ioctl_dpm_clk_update of lwis_ioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Pro...

6.7

CVE-2022-20367

  • EPSS 0.02%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:40

In construct_transaction of lwis_ioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for e...

7.8

CVE-2022-20368

  • EPSS 0.09%
  • Veröffentlicht 11.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:42:40

Product: AndroidVersions: Android kernelAndroid ID: A-224546354References: Upstream kernel