Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2021-0666

  • EPSS 0.02%
  • Veröffentlicht 18.11.2021 15:15:08
  • Zuletzt bearbeitet 21.11.2024 05:43:06

In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05672086; Issu...

6.7

CVE-2021-0667

  • EPSS 0.02%
  • Veröffentlicht 18.11.2021 15:15:08
  • Zuletzt bearbeitet 21.11.2024 05:43:06

In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05670581; Issue ID: ALP...

5.5

CVE-2021-0619

  • EPSS 0.02%
  • Veröffentlicht 18.11.2021 15:15:07
  • Zuletzt bearbeitet 21.11.2024 05:43:01

In ape extractor, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS055...

3.3

CVE-2021-25501

  • EPSS 0.02%
  • Veröffentlicht 05.11.2021 03:15:10
  • Zuletzt bearbeitet 21.11.2024 05:55:07

An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to SMR Nov-2021 Release 1 allows untrusted application to call some protected providers.

5.5

CVE-2021-25502

  • EPSS 0.01%
  • Veröffentlicht 05.11.2021 03:15:10
  • Zuletzt bearbeitet 21.11.2024 05:55:07

A vulnerability of storing sensitive information insecurely in Property Settings prior to SMR Nov-2021 Release 1 allows attackers to read ESN value without priviledge.

6.7

CVE-2021-25503

  • EPSS 0.02%
  • Veröffentlicht 05.11.2021 03:15:10
  • Zuletzt bearbeitet 21.11.2024 05:55:07

Improper input validation vulnerability in HDCP prior to SMR Nov-2021 Release 1 allows attackers to arbitrary code execution.

4.4

CVE-2021-25500

  • EPSS 0.02%
  • Veröffentlicht 05.11.2021 03:15:07
  • Zuletzt bearbeitet 21.11.2024 05:55:07

A missing input validation in HDCP LDFW prior to SMR Nov-2021 Release 1 allows attackers to overwrite TZASC allowing TEE compromise.

5.5

CVE-2021-0613

  • EPSS 0.02%
  • Veröffentlicht 25.10.2021 14:15:09
  • Zuletzt bearbeitet 21.11.2024 05:43:01

In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS...

5.5

CVE-2021-0614

  • EPSS 0.02%
  • Veröffentlicht 25.10.2021 14:15:09
  • Zuletzt bearbeitet 21.11.2024 05:43:01

In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS...

5.5

CVE-2021-0615

  • EPSS 0.02%
  • Veröffentlicht 25.10.2021 14:15:09
  • Zuletzt bearbeitet 21.11.2024 05:43:01

In flv extractor, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS055613...