Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.13%
  • Veröffentlicht 07.07.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:47

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. Attackers can bypass Factory Reset Protection (FRP) by enrolling a new lock password. The Samsung ID is SVE-2020-17328 (July 2020).

  • EPSS 0.34%
  • Veröffentlicht 07.07.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:47

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. The kernel logging feature allows attackers to discover virtual addresses via vectors involving shared memory. The Samsung ID is SVE-2020-17605 (July 2020).

  • EPSS 0.27%
  • Veröffentlicht 07.07.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:47

An issue was discovered on Samsung mobile devices with P(9.0) and Q(10.0) (Exynos 7885 chipsets) software. The Bluetooth Low Energy (BLE) component has a buffer overflow with a resultant deadlock or crash. The Samsung ID is SVE-2020-16870 (July 2020)...

  • EPSS 0.21%
  • Veröffentlicht 07.07.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:47

An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. StickerProvider allows directory traversal for access to system files. The Samsung ID is SVE-2020-17665 (July 2020).

  • EPSS 0.27%
  • Veröffentlicht 07.07.2020 14:15:12
  • Zuletzt bearbeitet 21.11.2024 05:05:48

An issue was discovered on Samsung mobile devices with Q(10.0) software. Attackers can trigger an out-of-bounds access and device reset via a 4K wallpaper image because ImageProcessHelper mishandles boundary checks. The Samsung ID is SVE-2020-18056 (...

  • EPSS 0.44%
  • Veröffentlicht 16.06.2020 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:53:08

This is an unbounded write into kernel global memory, via a user-controlled buffer size.Product: AndroidVersions: Android kernelAndroid ID: A-135130450

  • EPSS 0.44%
  • Veröffentlicht 16.06.2020 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:53:09

Function abc_pcie_issue_dma_xfer_sync creates a transfer object, adds it to the session object then continues to work with it. A concurrent thread could retrieve created transfer object from the session object and delete it using abc_pcie_dma_user_xf...

  • EPSS 0.15%
  • Veröffentlicht 16.06.2020 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:53:09

In crus_afe_get_param of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

  • EPSS 0.44%
  • Veröffentlicht 16.06.2020 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:53:09

In crus_sp_shared_ioctl we first copy 4 bytes from userdata into "size" variable, and then use that variable as the size parameter for "copy_from_user", ending up overwriting memory following "crus_sp_hdr". "crus_sp_hdr" is a static variable, of type...

  • EPSS 0.86%
  • Veröffentlicht 11.06.2020 15:15:18
  • Zuletzt bearbeitet 21.11.2024 04:53:07

In hevcd_fmt_conv_420sp_to_420sp_av8 of ihevcd_fmt_conv_420sp_to_420sp.s, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User int...