Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-28344

  • EPSS 0.15%
  • Veröffentlicht 08.11.2020 05:15:11
  • Zuletzt bearbeitet 21.11.2024 05:22:38

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. System services may crash because of the lack of a NULL parameter check. The LG ID is LVE-SMP-200024 (November 2020).

7.5

CVE-2020-28345

  • EPSS 0.13%
  • Veröffentlicht 08.11.2020 05:15:11
  • Zuletzt bearbeitet 21.11.2024 05:22:38

An issue was discovered on LG mobile devices with Android OS 10 software. The Wi-Fi subsystem may crash because of the lack of a NULL parameter check. The LG ID is LVE-SMP-200025 (November 2020).

9.3

CVE-2020-0416

  • EPSS 0.13%
  • Veröffentlicht 14.10.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 04:53:28

In multiple settings screens, there are possible tapjacking attacks due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for expl...

5.5

CVE-2020-0419

  • EPSS 0.02%
  • Veröffentlicht 14.10.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 04:53:29

In generateInfo of PackageInstallerSession.java, there is a possible leak of cross-profile URI data during app installation due to a missing permission check. This could lead to local information disclosure with no additional execution privileges nee...

7.8

CVE-2020-0420

  • EPSS 0.01%
  • Veröffentlicht 14.10.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 04:53:29

In setUpdatableDriverPath of GpuService.cpp, there is a possible memory corruption due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for ...

7.8

CVE-2020-0421

  • EPSS 0.01%
  • Veröffentlicht 14.10.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 04:53:29

In appendFormatV of String8.cpp, there is a possible out of bounds write due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3

CVE-2020-0422

  • EPSS 0.01%
  • Veröffentlicht 14.10.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 04:53:29

In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. This could lead to local information disclosure of contact data with User execution privileges need...

7.8

CVE-2020-0423

  • EPSS 0.95%
  • Veröffentlicht 14.10.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 04:53:29

In binder_release_work of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploita...

9.4

CVE-2020-0283

  • EPSS 0.19%
  • Veröffentlicht 14.10.2020 14:15:16
  • Zuletzt bearbeitet 21.11.2024 04:53:14

There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-163008257

9.4

CVE-2020-0339

  • EPSS 0.12%
  • Veröffentlicht 14.10.2020 14:15:16
  • Zuletzt bearbeitet 21.11.2024 04:53:20

There is a possible out of bounds read due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-162980705