VYPR

Android SDK

by Google

CVEs (1,592)

  • CVE-2021-39689MedMar 16, 2022
    risk 0.44cvss 6.7epss 0.00

    In multiple functions of odsign_main.cpp, there is a possible way to persist system attack due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0977MedDec 15, 2021
    risk 0.44cvss 6.7epss 0.00

    In phNxpNHal_DtaUpdate of phNxpNciHal_dta.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0703MedOct 22, 2021
    risk 0.44cvss 6.8epss 0.00

    In SecondStageMain of init.cpp, there is a possible use after free due to incorrect shared_ptr usage. This could lead to local escalation of privilege if the attacker has physical access to the device, with no additional execution privileges needed. User interaction is not…

  • CVE-2021-0691MedOct 6, 2021
    risk 0.44cvss 6.7epss 0.00

    In the SELinux policy configured in system_app.te, there is a possible way for system_app to gain code execution in other processes due to an overly-permissive SELinux policy. This could lead to local escalation of privilege with System execution privileges needed. User…

  • CVE-2021-0585MedJul 14, 2021
    risk 0.44cvss 6.7epss 0.00

    In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0546MedJun 22, 2021
    risk 0.44cvss 6.7epss 0.00

    In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0545MedJun 22, 2021
    risk 0.44cvss 6.7epss 0.00

    In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC server with System execution privileges needed. User interaction is not needed for…

  • CVE-2021-0544MedJun 22, 2021
    risk 0.44cvss 6.7epss 0.00

    In phNxpNciHal_print_res_status of phNxpNciHal.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0543MedJun 22, 2021
    risk 0.44cvss 6.7epss 0.00

    In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0540MedJun 22, 2021
    risk 0.44cvss 6.7epss 0.00

    In halWrapperDataCallback of hal_wrapper.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2010-2525HigJun 22, 2021
    risk 0.44cvss 7.8epss 0.00

    A flaw was discovered in gfs2 file system’s handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.

  • CVE-2021-0467MedJun 14, 2021
    risk 0.44cvss 6.8epss 0.00

    In Chromecast bootROM, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege in the bootloader, with physical USB access, with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-0371MedMar 10, 2021
    risk 0.44cvss 6.7epss 0.00

    In nci_proc_rf_management_ntf of nci_hrcv.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2021-0370MedMar 10, 2021
    risk 0.44cvss 6.7epss 0.00

    In Write of NxpMfcReader.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC server with System execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0406MedFeb 26, 2021
    risk 0.44cvss 6.7epss 0.00

    In cameraisp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11;…

  • CVE-2021-0363MedFeb 3, 2021
    risk 0.44cvss 6.7epss 0.00

    In mobile_log_d, there is a possible command injection due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11;…

  • CVE-2021-0359MedFeb 3, 2021
    risk 0.44cvss 6.7epss 0.00

    In netdiag, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch…

  • CVE-2021-0356MedFeb 3, 2021
    risk 0.44cvss 6.7epss 0.00

    In netdiag, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11;…

  • CVE-2021-0308MedJan 11, 2021
    risk 0.44cvss 6.8epss 0.00

    In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android;…

  • CVE-2020-27066MedDec 15, 2020
    risk 0.44cvss 6.7epss 0.00

    In xfrm6_tunnel_free_spi of net/ipv6/xfrm6_tunnel.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

Page 42 of 80