Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.4

CVE-2024-22005

  • EPSS 0.01%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:50:01

there is a possible Authentication Bypass due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.3

CVE-2024-22006

  • EPSS 0.08%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:53:01

OOB read in the TMU plugin that allows for memory disclosure in the power management subsystem of the device.

6.2

CVE-2024-22007

  • EPSS 0.03%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:52:57

In constraint_check of fvp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2024-22008

  • EPSS 0.02%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:52:53

In config_gov_time_windows of tmu.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...

7.1

CVE-2024-22009

  • EPSS 0.02%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:52:46

In init_data of , there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5

CVE-2024-22010

  • EPSS 0.03%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:51:59

In dvfs_plugin_caller of fvp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5

CVE-2024-22011

  • EPSS 0.5%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 26.03.2025 21:15:21

In ss_ProcessRejectComponent of ss_MmConManagement.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not neede...

6.2

CVE-2024-25984

  • EPSS 0.03%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:51:54

In dumpBatteryDefend of dump_power.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitat...

8.4

CVE-2024-25985

  • EPSS 0.02%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:51:50

In bigo_unlocked_ioctl of bigo.c, there is a possible UAF due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.8

CVE-2024-25986

  • EPSS 0.04%
  • Veröffentlicht 11.03.2024 19:15:47
  • Zuletzt bearbeitet 03.04.2025 15:51:45

In ppmp_unprotect_buf of drm_fw.c, there is a possible compromise of protected memory due to a logic error in the code. This could lead to local escalation of privilege to TEE with no additional execution privileges needed. User interaction is not ne...