Google

Android

7776 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-29786

  • EPSS 0.99%
  • Veröffentlicht 13.06.2024 21:15:52
  • Zuletzt bearbeitet 21.11.2024 09:08:19

In pktproc_fill_data_addr_without_bm of link_rx_pktproc.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed ...

7.8

CVE-2024-29787

  • EPSS 0.03%
  • Veröffentlicht 13.06.2024 21:15:52
  • Zuletzt bearbeitet 21.11.2024 09:08:19

In lwis_process_transactions_in_queue of lwis_transaction.c, there is a possible use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed f...

4.7

CVE-2024-29778

  • EPSS 0.04%
  • Veröffentlicht 13.06.2024 21:15:51
  • Zuletzt bearbeitet 27.03.2025 17:15:55

In ProtocolPsDedicatedBearInfoAdapter::processQosSession of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User ...

5.5

CVE-2024-29780

  • EPSS 0.03%
  • Veröffentlicht 13.06.2024 21:15:51
  • Zuletzt bearbeitet 18.03.2025 21:15:26

In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible uninitialized stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. U...

6.6

CVE-2024-20074

  • EPSS 0.13%
  • Veröffentlicht 03.06.2024 02:15:09
  • Zuletzt bearbeitet 25.04.2025 18:37:43

In dmc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08668110; Issue ID...

6.7

CVE-2024-20075

  • EPSS 0.04%
  • Veröffentlicht 03.06.2024 02:15:09
  • Zuletzt bearbeitet 13.03.2025 17:15:26

In eemgpu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08713302; Issue...

4

CVE-2024-20065

  • EPSS 0.05%
  • Veröffentlicht 03.06.2024 02:15:08
  • Zuletzt bearbeitet 25.04.2025 18:39:04

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALP...

7.8

CVE-2024-23713

  • EPSS 0.03%
  • Veröffentlicht 07.05.2024 21:15:09
  • Zuletzt bearbeitet 17.12.2024 16:08:06

In migrateNotificationFilter of NotificationManagerService.java, there is a possible failure to persist notifications settings due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges ...

5.5

CVE-2024-0022

  • EPSS 0.03%
  • Veröffentlicht 07.05.2024 21:15:08
  • Zuletzt bearbeitet 27.03.2025 21:15:43

In multiple functions of CompanionDeviceManagerService.java, there is a possible launch NotificationAccessConfirmationActivity of another user profile due to improper input validation. This could lead to local information disclosure with no additiona...

7.8

CVE-2024-0024

  • EPSS 0.03%
  • Veröffentlicht 07.05.2024 21:15:08
  • Zuletzt bearbeitet 17.12.2024 16:48:14

In multiple methods of UserManagerService.java, there is a possible failure to persist or enforce user restrictions due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. Use...