Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2024-32909

  • EPSS 0.1%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 21.11.2024 09:16:00

In handle_msg of main.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2024-32910

  • EPSS 0.04%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 13.03.2025 14:15:26

In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interacti...

9.8

CVE-2024-32911

  • EPSS 1.9%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 21.11.2024 09:16:00

There is a possible escalation of privilege due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2024-32912

  • EPSS 0.05%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 20.03.2025 15:15:41

there is a possible persistent Denial of Service due to test/debugging code left in a production build. This could lead to local denial of service of impaired use of the device with no additional execution privileges needed. User interaction is not n...

9.8

CVE-2024-32913

  • EPSS 3.34%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 21.11.2024 09:16:01

In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2024-32914

  • EPSS 0.04%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 24.07.2025 15:38:18

In tpu_get_int_state of tpu.c, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

4.3

CVE-2024-32915

  • EPSS 0.12%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 24.07.2025 16:07:42

In CellInfoListParserV2::FillCellInfo() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is ...

5.9

CVE-2024-32916

  • EPSS 0.03%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 24.07.2025 16:07:34

In fvp_freq_histogram_init of fvp.c, there is a possible Information Disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

7.1

CVE-2024-32917

  • EPSS 0.04%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 24.07.2025 16:06:57

In pl330_dma_from_peri_start() of fp_spi_dma.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

6.1

CVE-2024-32918

  • EPSS 0.02%
  • Veröffentlicht 13.06.2024 21:15:55
  • Zuletzt bearbeitet 21.11.2024 09:16:02

Permission Bypass allowing attackers to disable HDCP 2.2 encryption by not completing the HDCP Key Exchange initialization steps