Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.18%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:45

In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for e...

  • EPSS 0.16%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:45

In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. This could lead to local disclosure of user input with System execution privileges needed. User interaction is not needed for exploitation.Produ...

  • EPSS 0.15%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:45

In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User inte...

  • EPSS 0.85%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:45

In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. This could lead to remote denial of service with User execution privileges needed. User interaction is...

Exploit
  • EPSS 5.38%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:45

In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction...

  • EPSS 0.33%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:45

In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user contacts over bluetooth due to a missing permission check. This could lead to local information disclosure if a malicious app enables contacts over a bluet...

  • EPSS 0.17%
  • Veröffentlicht 13.02.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:52:46

In Parcel::continueWrite of Parcel.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Prod...

  • EPSS 0.16%
  • Veröffentlicht 12.02.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 01:28:04

The Bluetooth stack in Android before 2.3.6 allows a physically proximate attacker to obtain contact information via an AT phonebook transfer.

Exploit
  • EPSS 0.68%
  • Veröffentlicht 12.02.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 01:31:30

Android SQLite Journal before 4.0.1 has an information disclosure vulnerability.

Exploit
  • EPSS 2.05%
  • Veröffentlicht 07.02.2020 16:15:09
  • Zuletzt bearbeitet 21.11.2024 02:16:33

A Code Execution vulnerability exists in Android prior to 4.4.0 related to the addJavascriptInterface method and the accessibility and accessibilityTraversal objects, which could let a remote malicious user execute arbitrary code.