Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2018-11910

  • EPSS 0.01%
  • Veröffentlicht 27.11.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:44:14

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /persist/ which presents a potential issue.

7.8

CVE-2018-11911

  • EPSS 0.01%
  • Veröffentlicht 27.11.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:44:14

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper configuration of script may lead to unprivileged access.

7.8

CVE-2018-11912

  • EPSS 0.01%
  • Veröffentlicht 27.11.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:44:14

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper configuration of daemons may lead to unprivileged access.

7.8

CVE-2018-11913

  • EPSS 0.02%
  • Veröffentlicht 27.11.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:44:14

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper configuration of dev nodes may lead to potential security issue.

7.5

CVE-2018-9541

  • EPSS 0.39%
  • Veröffentlicht 14.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:40

In avrc_pars_vendor_rsp of avcr_pars_ct.cc, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interacti...

7.5

CVE-2018-9542

  • EPSS 0.39%
  • Veröffentlicht 14.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:40

In avrc_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for expl...

5.5

CVE-2018-9543

  • EPSS 0.04%
  • Veröffentlicht 14.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:40

In trim_device of f2fs_format_utils.c, it is possible that the data partition is not wiped during a factory reset. This could lead to local information disclosure after factory reset with no additional execution privileges needed. User interaction is...

5.5

CVE-2018-9544

  • EPSS 0.02%
  • Veröffentlicht 14.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:40

In register_app of btif_hd.cc, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not need...

7.8

CVE-2018-9545

  • EPSS 0.02%
  • Veröffentlicht 14.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:40

In BTA_HdRegisterApp of bta_hd_api.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitat...

9.8

CVE-2018-9580

  • EPSS 0.15%
  • Veröffentlicht 14.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:15:44

A Elevation of privilege vulnerability in the HTC bootloader. Product: Android. Versions: Android kernel. Android ID: A-76222002.