Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2021-39809

  • EPSS 0.29%
  • Veröffentlicht 12.04.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:20:16

In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for...

7.8

CVE-2021-39812

  • EPSS 0.02%
  • Veröffentlicht 12.04.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:20:17

In TBD of TBD, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: ...

7.2

CVE-2021-39814

  • EPSS 0.03%
  • Veröffentlicht 12.04.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:20:17

In ppmp_validate_wsm of drm_fw.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Prod...

7.8

CVE-2021-0694

  • EPSS 0.01%
  • Veröffentlicht 12.04.2022 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:43:09

In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. This could lead to local escalation of privilege with no add...

7.8

CVE-2021-0707

  • EPSS 0.02%
  • Veröffentlicht 12.04.2022 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:43:10

In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: ...

5.5

CVE-2022-27821

  • EPSS 0.05%
  • Veröffentlicht 11.04.2022 20:15:22
  • Zuletzt bearbeitet 21.11.2024 06:56:15

Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image file.

5.5

CVE-2022-27822

  • EPSS 0.02%
  • Veröffentlicht 11.04.2022 20:15:22
  • Zuletzt bearbeitet 21.11.2024 06:56:15

Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.

7.1

CVE-2022-27823

  • EPSS 0.06%
  • Veröffentlicht 11.04.2022 20:15:22
  • Zuletzt bearbeitet 21.11.2024 06:56:15

Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.

7.1

CVE-2022-27824

  • EPSS 0.06%
  • Veröffentlicht 11.04.2022 20:15:22
  • Zuletzt bearbeitet 21.11.2024 06:56:15

Improper size check of in sapefd_parse_meta_DESCRIPTION function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file

7.1

CVE-2022-27825

  • EPSS 0.06%
  • Veröffentlicht 11.04.2022 20:15:22
  • Zuletzt bearbeitet 21.11.2024 06:56:16

Improper size check in sapefd_parse_meta_HEADER function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.