VYPR

Android

by Google

CVEs (4,715)

  • CVE-2023-21219HigJun 28, 2023
    risk 0.49cvss 7.5epss 0.00

    there is a possible use of unencrypted transport over cellular networks due to an insecure default value. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2023-21201HigJun 28, 2023
    risk 0.49cvss 7.5epss 0.00

    In on_create_record_event of btif_sdp_server.cc, there is a possible out of bounds read due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2023-21197HigJun 28, 2023
    risk 0.49cvss 7.5epss 0.00

    In btm_acl_process_sca_cmpl_pkt of btm_acl.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2023-21186HigJun 28, 2023
    risk 0.49cvss 7.5epss 0.00

    In LogResponse of Dns.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2023-21067HigMar 24, 2023
    risk 0.49cvss 7.5epss 0.00

    Product: AndroidVersions: Android kernelAndroid ID: A-254114726References: N/A

  • CVE-2023-21061HigMar 24, 2023
    risk 0.49cvss 7.5epss 0.00

    Product: AndroidVersions: Android kernelAndroid ID: A-229255400References: N/A

  • CVE-2023-21028HigMar 24, 2023
    risk 0.49cvss 7.5epss 0.00

    In parse_printerAttributes of ipphelper.c, there is a possible out of bounds read due to a string without a null-terminator. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2023-21027HigMar 24, 2023
    risk 0.49cvss 7.5epss 0.00

    In multiple functions of PasspointXmlUtils.java, there is a possible authentication misconfiguration due to a logic error in the code. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2023-20948HigFeb 28, 2023
    risk 0.49cvss 7.5epss 0.00

    In dropFramesUntilIframe of AAVCAssembler.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2022-20545HigDec 16, 2022
    risk 0.49cvss 7.5epss 0.01

    In bindArtworkAndColors of MediaControlPanel.java, there is a possible way to crash the phone due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2022-20483HigDec 13, 2022
    risk 0.49cvss 7.5epss 0.01

    In several functions that parse avrc response in avrc_pars_ct.cc and related files, there are possible out of bounds reads due to integer overflows. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed…

  • CVE-2022-20445HigNov 8, 2022
    risk 0.49cvss 7.5epss 0.00

    In process_service_search_rsp of sdp_discovery.cc, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2022-20418HigOct 11, 2022
    risk 0.49cvss 7.5epss 0.00

    In pickStartSeq of AAVCAssembler.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2022-20302HigAug 12, 2022
    risk 0.49cvss 7.6epss 0.00

    In Settings, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if the attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed…

  • CVE-2022-20404HigAug 11, 2022
    risk 0.49cvss 7.5epss 0.00

    Product: AndroidVersions: Android kernelAndroid ID: A-205714161References: N/A

  • CVE-2022-20247HigAug 11, 2022
    risk 0.49cvss 7.5epss 0.00

    In Media, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:…

  • CVE-2022-20244HigAug 11, 2022
    risk 0.49cvss 7.5epss 0.00

    In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if more than 100 bluetooth devices have been connected with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2022-20234HigJul 13, 2022
    risk 0.49cvss 7.5epss 0.00

    In Car Settings app, the NotificationAccessConfirmationActivity is exported. In NotificationAccessConfirmationActivity, it gets both 'mComponentName' and 'pkgTitle' from user.An unprivileged app can use a malicous mComponentName with a benign pkgTitle (e.g. Settings app) to make…

  • CVE-2022-20224HigJul 13, 2022
    risk 0.49cvss 7.5epss 0.01

    In AT_SKIP_REST of bta_hf_client_at.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure in the Bluetooth stack with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2022-20177HigJun 15, 2022
    risk 0.49cvss 7.5epss 0.00

    Product: AndroidVersions: Android kernelAndroid ID: A-209906686References: N/A

Page 115 of 236