Vulnerabilities in Android

57 results

CVE-2018-9589—In ieee802_11_rx_wnmsleep_req of wnm_ap.c in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a pEPSS 0.2%CVE-2019-1995—In ComposeActivityEmail of ComposeActivityEmail.java, there is a possible way to silently attach files to an email due to a confused deputy.EPSS 0.2%CVE-2019-1998—In event_handler of keymaster_app.c, there is possible resource exhaustion due to a table being lost on reboot. This could lead to local denEPSS 0.2%CVE-2019-2031—In rw_t3t_act_handle_check_ndef_rsp of rw_t3t.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to lEPSS 0.2%CVE-2019-2033—In create_hdr of dnssd_clientstub.c, there is a possible use after free. This could lead to local escalation of privilege with no additionalEPSS 0.2%CVE-2019-2096—In EffectRelease of EffectBundle.cpp, there is a possible memory corruption due to a double free. This could lead to local escalation of priEPSS 0.2%CVE-2019-2039—In rw_i93_sm_detect_ndef of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local informaEPSS 0.2%CVE-2019-2032—In SetScanResponseData of ble_advertiser_hci_interface.cc, there is a possible out-of-bound write due to a missing bounds check. This could EPSS 0.2%CVE-2019-2040—In rw_i93_process_ext_sys_info of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local iEPSS 0.2%CVE-2019-2091—In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permEPSS 0.2%CVE-2019-2098—In areNotificationsEnabledForPackage of NotificationManagerService.java, there is a possible permissions bypass due to a missing permissionsEPSS 0.2%CVE-2019-2092—In isSeparateProfileChallengeAllowed of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission EPSS 0.2%CVE-2019-2026—In updateAssistMenuItems of Editor.java, there is a possible escape from the Setup Wizard due to a missing permission check. This could leadEPSS 0.1%CVE-2026-28576CRITICALIn Contacts Provider, there is a possible way to access the contacts database due to SQL injection. This could lead to local information disEPSS 0.1%CVE-2019-2090—In isPackageDeviceAdminOnAnyUser of PackageManagerService.java, there is a possible permissions bypass due to a missing permissions check. TEPSS 0.1%CVE-2018-9586—In run of InstallPackageTask.java in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, it is possible that EPSS 0.1%CVE-2025-8192MEDIUMRace condition in AndroidTV TvSettingsEPSS 0.1%

← previouspage 3 / 3next →