Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.86%
  • Veröffentlicht 05.02.2020 17:15:10
  • Zuletzt bearbeitet 21.11.2024 04:21:15

An issue was discovered in the Bluetooth component of the Cypress (formerly owned by Broadcom) Wireless IoT codebase. Extended Inquiry Responses (EIRs) are improperly handled, which causes a heap-based buffer overflow during device inquiry. This over...

Exploit
  • EPSS 0.22%
  • Veröffentlicht 04.02.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 04:34:28

On Samsung mobile devices with O(8.0) and P(9.0) software and an Exynos 8895 chipset, RKP (aka the Samsung Hypervisor EL2 implementation) allows arbitrary memory write operations. The Samsung ID is SVE-2019-16265.

  • EPSS 0.27%
  • Veröffentlicht 24.01.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 02:25:35

audio/AudioPolicyManagerBase.cpp in Android before 5.1 allows attackers to cause a denial of service (audio_policy application outage) via a crafted application that provides a NULL device address.

  • EPSS 0.39%
  • Veröffentlicht 24.01.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 02:25:36

media/libmedia/IAudioPolicyService.cpp in Android before 5.1 allows attackers to execute arbitrary code with media_server privileges or cause a denial of service (integer overflow) via a crafted application that provides an invalid array size.

  • EPSS 2.99%
  • Veröffentlicht 23.01.2020 15:15:13
  • Zuletzt bearbeitet 21.11.2024 01:59:42

Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability

  • EPSS 0.14%
  • Veröffentlicht 08.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:52:43

In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is nee...

  • EPSS 0.15%
  • Veröffentlicht 08.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:52:43

In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo...

  • EPSS 0.77%
  • Veröffentlicht 08.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:52:44

In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC server with no additional execution privileges needed...

  • EPSS 0.17%
  • Veröffentlicht 08.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:52:44

In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for e...

  • EPSS 0.12%
  • Veröffentlicht 08.01.2020 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:52:44

In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not ne...