Android

android

Vendor: Google • 8,095 CVEs

CVEs (8,095)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-44099 1Google 1Android Oct 28, 2024 Oct 25, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for ex...Show more There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2024-44098 1Google 1Android Jul 24, 2025 Oct 25, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 In lwis_device_event_states_clear_locked of lwis_event.c, there is a possible privilege escalation due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. Us...Show more In lwis_device_event_states_clear_locked of lwis_event.c, there is a possible privilege escalation due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2024-39440 1Google 1Android Oct 17, 2024 Oct 9, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed.
CVE-2024-39439 1Google 1Android Oct 17, 2024 Oct 9, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In DRM service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2024-39438 1Google 1Android Oct 17, 2024 Oct 9, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
CVE-2024-39437 1Google 1Android Oct 17, 2024 Oct 9, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
CVE-2024-39436 1Google 1Android Oct 17, 2024 Oct 9, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.
CVE-2024-34664 1Google 1Android Jul 17, 2025 Oct 8, 2024 N/A· v4 2.4 LOW· v3 N/A· v2 Improper check for exception conditions in Knox Guard prior to SMR Oct-2024 Release 1 allows physical attackers to bypass Knox Guard in a multi-user environment.
CVE-2024-34663 1Google 1Android Jul 17, 2025 Oct 8, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to write out-of-bounds memory.
CVE-2024-20103 2Google Mediatek 2Android Software Development Kit Apr 24, 2025 Oct 7, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for expl...Show more In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; Issue ID: MSV-1599.Show less
CVE-2024-20102 1Google 1Android Mar 13, 2025 Oct 7, 2024 N/A· v4 4.9 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploi...Show more In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998892; Issue ID: MSV-1601.Show less
CVE-2024-20101 2Google Mediatek 2Android Software Development Kit Apr 24, 2025 Oct 7, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploi...Show more In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998901; Issue ID: MSV-1602.Show less
CVE-2024-20100 2Google Mediatek 3Android Iot YoctoSoftware Development Kit Apr 25, 2025 Oct 7, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploi...Show more In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603.Show less
CVE-2024-20099 2Google Linuxfoundation 2Android Yocto Apr 25, 2025 Oct 7, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation....Show more In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08997492; Issue ID: MSV-1625.Show less
CVE-2024-20098 2Google Linuxfoundation 2Android Yocto Apr 25, 2025 Oct 7, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation....Show more In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996886; Issue ID: MSV-1626.Show less
CVE-2024-20097 1Google 1Android Oct 27, 2024 Oct 7, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Pat...Show more In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1630.Show less
CVE-2024-20096 1Google 1Android Oct 27, 2024 Oct 7, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patc...Show more In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996900; Issue ID: MSV-1635.Show less
CVE-2024-20095 1Google 1Android Oct 27, 2024 Oct 7, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patc...Show more In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996894; Issue ID: MSV-1636.Show less
CVE-2024-20093 1Google 1Android Oct 27, 2024 Oct 7, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Pat...Show more In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1699.Show less
CVE-2024-20092 1Google 1Android Apr 25, 2025 Oct 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. P...Show more In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1700.Show less

Previous 1...424344...405 Next