Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-32902

  • EPSS 0.08%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 27.03.2025 15:15:51

Remote prevention of access to cellular service with no user interaction (for example, crashing the cellular radio service with a malformed packet)

7.8

CVE-2024-32903

  • EPSS 0.02%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 21.11.2024 09:15:59

In prepare_response_locked of lwis_transaction.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not neede...

4.7

CVE-2024-32904

  • EPSS 0.04%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 13.03.2025 19:15:44

In ProtocolVsimOperationAdapter() of protocolvsimadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not ne...

9.8

CVE-2024-32905

  • EPSS 4.36%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 21.11.2024 09:15:59

In circ_read of link_device_memory_legacy.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploit...

7.8

CVE-2024-32906

  • EPSS 0.05%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 21.11.2024 09:15:59

In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2024-32907

  • EPSS 0.05%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 21.11.2024 09:15:59

In memcall_add of memlog.c, there is a possible buffer overflow due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2024-32908

  • EPSS 0.01%
  • Veröffentlicht 13.06.2024 21:15:54
  • Zuletzt bearbeitet 21.11.2024 09:16:00

In sec_media_protect of media.c, there is a possible permission bypass due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7

CVE-2024-32891

  • EPSS 0.02%
  • Veröffentlicht 13.06.2024 21:15:53
  • Zuletzt bearbeitet 21.11.2024 09:15:56

In sec_media_unprotect of media.c, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2024-32892

  • EPSS 0.03%
  • Veröffentlicht 13.06.2024 21:15:53
  • Zuletzt bearbeitet 13.03.2025 20:15:19

In handle_init of goodix/main/main.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2024-32893

  • EPSS 0.09%
  • Veröffentlicht 13.06.2024 21:15:53
  • Zuletzt bearbeitet 21.11.2024 09:15:57

In _s5e9865_mif_set_rate of exynos_dvfs.c, there is a possible out of bounds read due to improper casting. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...