Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2021-0677

  • EPSS 0.02%
  • Veröffentlicht 17.12.2021 17:15:10
  • Zuletzt bearbeitet 21.11.2024 05:43:07

In ccu driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05827154; Issue ...

4.4

CVE-2021-39636

  • EPSS 0.05%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:51

In do_ipt_get_ctl and do_ipt_set_ctl of ip_tables.c, there is a possible way to leak kernel information due to uninitialized data. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed...

4.4

CVE-2021-39637

  • EPSS 0.02%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:51

In CreateDeviceInfo of trusty_remote_provisioning_context.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not need...

6.7

CVE-2021-39638

  • EPSS 0.02%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:51

In periodic_io_work_func of lwis_periodic_io.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

7.2

CVE-2021-39639

  • EPSS 0.01%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:51

In TBD of fvp.c, there is a possible way to glitch CPU behavior due to a missing permission check. This could lead to local escalation of privilege with physical access to device internals with no additional execution privileges needed. User interact...

7.8

CVE-2021-39640

  • EPSS 0.01%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:51

In __dwc3_gadget_ep0_queue of ep0.c, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Pro...

9.8

CVE-2021-39641

  • EPSS 0.17%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:52

Product: AndroidVersions: Android kernelAndroid ID: A-126949257References: N/A

6.4

CVE-2021-39642

  • EPSS 0.01%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:52

In synchronous_process_io_entries of lwis_ioctl.c, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitat...

6.7

CVE-2021-39643

  • EPSS 0.02%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:52

In ic_startRetrieveEntryValue of acropora/app/identity/ic.c, there is a possible bypass of defense-in-depth due to missing validation of the return value. This could lead to local escalation of privilege with System execution privileges needed. User ...

9.8

CVE-2021-39644

  • EPSS 0.17%
  • Veröffentlicht 15.12.2021 19:15:15
  • Zuletzt bearbeitet 21.11.2024 06:19:52

Product: AndroidVersions: Android kernelAndroid ID: A-199809304References: N/A