Filtered by vendor Google
Subscriptions
Filtered by product Android
Subscriptions
Total
8932 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-21168 | 1 Google | 1 Android | 2024-12-03 | 5.5 Medium |
| In convertCbYCrY of ColorConverter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-253270285 | ||||
| CVE-2023-21169 | 1 Google | 1 Android | 2024-12-03 | 4.4 Medium |
| In inviteInternal of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-274443441 | ||||
| CVE-2023-21170 | 1 Google | 1 Android | 2024-12-03 | 4.4 Medium |
| In executeSetClientTarget of ComposerCommandEngine.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-252764410 | ||||
| CVE-2023-21150 | 1 Google | 1 Android | 2024-12-03 | 4.4 Medium |
| In handle_set_parameters_ctrl of hal_socket.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-267312009References: N/A | ||||
| CVE-2023-21151 | 1 Google | 1 Android | 2024-12-03 | 6.7 Medium |
| In the Google BMS kernel module, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-265149414References: N/A | ||||
| CVE-2023-21152 | 1 Google | 1 Android | 2024-12-03 | 5.5 Medium |
| In FaceStatsAnalyzer::InterpolateWeightList of face_stats_analyzer.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-269174022References: N/A | ||||
| CVE-2023-21153 | 1 Google | 1 Android | 2024-12-03 | 6.7 Medium |
| In Do_AIMS_SET_CALL_WAITING of imsservice.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-264259730References: N/A | ||||
| CVE-2023-21154 | 1 Google | 1 Android | 2024-12-03 | 4.4 Medium |
| In StoreAdbSerialNumber of protocolmiscbuilder.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-263783910References: N/A | ||||
| CVE-2023-21155 | 1 Google | 1 Android | 2024-12-03 | 5.5 Medium |
| In BuildSetRadioNode of protocolmiscbuilder.cpp, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-264540700References: N/A | ||||
| CVE-2023-21156 | 1 Google | 1 Android | 2024-12-03 | 4.4 Medium |
| In BuildGetRadioNode of protocolmiscbulider.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure from the modem with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-264540759References: N/A | ||||
| CVE-2023-21157 | 1 Google | 1 Android | 2024-12-03 | 6.7 Medium |
| In encode of wlandata.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-263783137References: N/A | ||||
| CVE-2023-21158 | 1 Google | 1 Android | 2024-12-03 | 4.4 Medium |
| In encode of miscdata.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-263783635References: N/A | ||||
| CVE-2023-21159 | 1 Google | 1 Android | 2024-12-03 | 6.7 Medium |
| In Parse of simdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-263783565References: N/A | ||||
| CVE-2022-20531 | 1 Google | 1 Android | 2024-12-03 | 5.5 Medium |
| In Telecom, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. | ||||
| CVE-2023-42711 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-12-02 | 5.5 Medium |
| In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed | ||||
| CVE-2023-42721 | 2 Google, Unisoc | 2 Android, Sc9863a | 2024-12-02 | 5.5 Medium |
| In flv extractor, there is a possible missing verification incorrect input. This could lead to local denial of service with no additional execution privileges needed | ||||
| CVE-2023-42731 | 2 Google, Unisoc | 4 Android, T606, T612 and 1 more | 2024-12-02 | 4.4 Medium |
| In Gnss service, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed | ||||
| CVE-2023-42742 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-12-02 | 5.5 Medium |
| In sysui, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed | ||||
| CVE-2023-42744 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-12-02 | 5.5 Medium |
| In telecom service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed | ||||
| CVE-2023-32850 | 2 Google, Mediatek | 37 Android, Mt6580, Mt6739 and 34 more | 2024-12-02 | 7.8 High |
| In decoder, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08016659; Issue ID: ALPS08016659. | ||||