Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 58.92%
  • Veröffentlicht 09.07.2013 17:55:01
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Android 1.6 Donut through 4.2 Jelly Bean does not properly check cryptographic signatures for applications, which allows attackers to execute arbitrary code via an application package file (APK) that is modified in a way that does not violate the cry...

  • EPSS 0.2%
  • Veröffentlicht 29.05.2013 14:29:09
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The LG Hidden Menu component for Android on the LG Optimus G E973 allows physically proximate attackers to execute arbitrary commands by entering USB Debugging mode, using Android Debug Bridge (adb) to establish a USB connection, dialing 3845#*973#, ...

  • EPSS 1.11%
  • Veröffentlicht 05.02.2013 15:55:00
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device.

Exploit
  • EPSS 0.24%
  • Veröffentlicht 05.02.2013 15:55:00
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device.

Exploit
  • EPSS 6.45%
  • Veröffentlicht 10.12.2012 20:55:01
  • Zuletzt bearbeitet 16.06.2026 23:47:58

The Browser application in Android 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted market: URI in the SRC attribute of an IFRAME element.

  • EPSS 3.03%
  • Veröffentlicht 30.11.2012 12:54:16
  • Zuletzt bearbeitet 16.06.2026 23:44:39

diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference) via an application ...

  • EPSS 2.06%
  • Veröffentlicht 30.11.2012 12:54:16
  • Zuletzt bearbeitet 16.06.2026 23:44:39

Integer overflow in diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service via an application that uses cr...

  • EPSS 0.69%
  • Veröffentlicht 30.11.2012 12:54:16
  • Zuletzt bearbeitet 16.06.2026 23:44:39

drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center (QuIC) Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service (NULL pointer dereference) via an application that uses crafted arguments in a ...

  • EPSS 1.35%
  • Veröffentlicht 07.10.2012 15:55:01
  • Zuletzt bearbeitet 16.06.2026 23:34:09

The Zygote process in Android 4.0.3 and earlier accepts fork requests from processes with arbitrary UIDs, which allows remote attackers to cause a denial of service (reboot loop) via a crafted application.

  • EPSS 1.88%
  • Veröffentlicht 29.08.2012 10:56:41
  • Zuletzt bearbeitet 16.06.2026 23:44:11

Mozilla Firefox before 15.0 on Android does not properly implement unspecified callers of the __android_log_print function, which allows remote attackers to execute arbitrary code via a crafted web page that calls the JavaScript dump function.