Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-22265

Warnung
  • EPSS 0.16%
  • Veröffentlicht 10.01.2022 14:12:35
  • Zuletzt bearbeitet 30.10.2025 15:37:18

An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022 Release 1 allows arbitrary memory write and code execution.

7.1

CVE-2022-22264

  • EPSS 0.02%
  • Veröffentlicht 10.01.2022 14:12:34
  • Zuletzt bearbeitet 21.11.2024 06:46:31

Improper sanitization of incoming intent in Dressroom prior to SMR Jan-2022 Release 1 allows local attackers to read and write arbitrary files without permission.

5.5

CVE-2022-22263

  • EPSS 0.02%
  • Veröffentlicht 10.01.2022 14:12:33
  • Zuletzt bearbeitet 21.11.2024 06:46:30

Unprotected dynamic receiver in SecSettings prior to SMR Jan-2022 Release 1 allows untrusted applications to launch arbitrary activity.

7.8

CVE-2022-20012

  • EPSS 0.02%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:41:56

In mdp driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05836478;...

6.4

CVE-2022-20013

  • EPSS 0.01%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:41:56

In vow driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05837742; Issue ID:...

6.7

CVE-2022-20014

  • EPSS 0.01%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 22.05.2025 19:15:27

In vow driver, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05857308; ...

4.4

CVE-2022-20015

  • EPSS 0.01%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:41:57

In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0586...

6.7

CVE-2022-20016

  • EPSS 0.01%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:41:57

In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862986; Issue ID:...

4.4

CVE-2022-20018

  • EPSS 0.01%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:41:57

In seninf driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05863018; ...

5.5

CVE-2022-20019

  • EPSS 0.02%
  • Veröffentlicht 04.01.2022 16:15:10
  • Zuletzt bearbeitet 22.05.2025 19:15:28

In libMtkOmxGsmDec, there is a possible information disclosure due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID...