Filtered by vendor Google Subscriptions
Filtered by product Android Subscriptions
Total 7860 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-38208 2 Google, Microsoft 2 Android, Edge 2024-10-16 6.1 Medium
Microsoft Edge for Android Spoofing Vulnerability
CVE-2023-20807 2 Google, Mediatek 8 Android, Mt2713, Mt6895 and 5 more 2024-10-15 6.7 Medium
In dpe, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07608433; Issue ID: ALPS07608433.
CVE-2023-20808 2 Google, Mediatek 6 Android, Mt9011, Mt9022 and 3 more 2024-10-15 6.7 Medium
In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03645895; Issue ID: DTV03645895.
CVE-2024-44096 1 Google 1 Android 2024-10-15 4.4 Medium
there is a possible arbitrary read due to an insecure default value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.
CVE-2024-44095 1 Google 1 Android 2024-10-15 7.4 High
In ppmp_protect_mfcfw_buf of code/drm_fw.c, there is a possible corrupt memory due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2023-42740 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2024-10-11 7.8 High
In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed
CVE-2023-21166 1 Google 1 Android 2024-10-11 9.8 Critical
In RGXBackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2023-20822 2 Google, Mediatek 14 Android, Mt6883, Mt6885 and 11 more 2024-10-11 6.7 Medium
In netdagent, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944012; Issue ID: ALPS07944012.
CVE-2023-20821 5 Google, Linuxfoundation, Mediatek and 2 more 53 Android, Yocto, Mt2713 and 50 more 2024-10-11 6.7 Medium
In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07937113; Issue ID: ALPS07937113.
CVE-2023-1228 1 Google 2 Android, Chrome 2024-10-11 8.8 High
Insufficient policy enforcement in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
CVE-2023-21299 1 Google 1 Android 2024-10-11 5.5 Medium
In Package Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2022-48460 2 Google, Unisoc 13 Android, Sc7731e, Sc9832e and 10 more 2024-10-11 5.5 Medium
In setting service, there is a possible undefined behavior due to incorrect error handling. This could lead to local denial of service with no additional execution privileges needed
CVE-2023-42676 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2024-10-11 5.5 Medium
In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed
CVE-2023-42708 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2024-10-11 5.5 Medium
In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed
CVE-2023-42719 2 Google, Unisoc 4 Android, T606, T612 and 1 more 2024-10-11 5.5 Medium
In video service, there is a possible out of bounds read due to a incorrect bounds check. This could lead to local denial of service with no additional execution privileges needed
CVE-2023-42729 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2024-10-11 4.4 Medium
In ril service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
CVE-2023-42751 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2024-10-11 4.4 Medium
In gnss service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
CVE-2023-38443 2 Google, Unisoc 9 Android, Sc7731e, Sc9832e and 6 more 2024-10-11 7.8 High
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
CVE-2023-38444 2 Google, Unisoc 9 Android, Sc7731e, Sc9832e and 6 more 2024-10-11 7.8 High
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges
CVE-2023-38449 2 Google, Unisoc 9 Android, Sc7731e, Sc9832e and 6 more 2024-10-11 7.8 High
In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges