Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.11%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 17.12.2024 18:21:36

In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote processes due to a logic error in the code. This ...

  • EPSS 0.11%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 17.12.2024 18:17:31

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interacti...

  • EPSS 0.25%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 21.01.2025 23:15:13

In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol. This could lead to remote escalation of privilege with no additional execution privileges needed. User ...

  • EPSS 0.12%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 17.12.2024 18:15:21

In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges ...

  • EPSS 0.08%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 17.12.2024 18:14:30

In _UnrefAndMaybeDestroy of pmr.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for...

  • EPSS 0.07%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 17.12.2024 18:14:22

In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is no...

  • EPSS 0.11%
  • Veröffentlicht 09.07.2024 21:15:14
  • Zuletzt bearbeitet 17.12.2024 18:14:01

In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not ne...

  • EPSS 0.1%
  • Veröffentlicht 09.07.2024 21:15:13
  • Zuletzt bearbeitet 17.12.2024 17:28:52

In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • EPSS 0.12%
  • Veröffentlicht 09.07.2024 21:15:13
  • Zuletzt bearbeitet 19.03.2025 18:15:20

In multiple functions of ManagedServices.java, there is a possible way to hide an app with notification access in the Device & app notifications settings due to improper input validation. This could lead to local escalation of privilege with no addit...

  • EPSS 0.11%
  • Veröffentlicht 09.07.2024 21:15:13
  • Zuletzt bearbeitet 17.12.2024 17:21:22

In onResult of AccountManagerService.java, there is a possible way to perform an arbitrary background activity launch due to parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User intera...