VYPR

Vendor CVEs

Google

All CVEs

11,416 total · sorted by risk
  • CVE-2021-0517HigJun 21, 2021
    risk 0.49cvss 7.5epss 0.01

    In updateCapabilities of ConnectivityService.java, there is a possible incorrect network state determination due to a logic error in the code. This could lead to biasing of networking tasks to occur on non-VPN networks, which could lead to remote information disclosure, with no…

  • CVE-2021-0466HigJun 11, 2021
    risk 0.49cvss 7.5epss 0.01

    In startIpClient of ClientModeImpl.java, there is a possible identifier which could be used to track a device. This could lead to remote information disclosure to a proximal attacker, with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-0431HigApr 13, 2021
    risk 0.49cvss 7.5epss 0.02

    In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to a paired device with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0326HigFeb 10, 2021
    risk 0.49cvss 7.5epss 0.05

    In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target device is performing a Wi-Fi Direct search, with no additional execution privileges needed. User interaction is not…

  • CVE-2020-16021HigJan 8, 2021
    risk 0.49cvss 7.5epss 0.01

    Race in image burner in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to perform OS-level privilege escalation via a malicious file.

  • CVE-2020-27055HigDec 15, 2020
    risk 0.49cvss 7.5epss 0.01

    In isSubmittable and showWarningMessagesIfAppropriate of WifiConfigController.java and WifiConfigController2.java, there is a possible insecure WiFi configuration due to improper input validation. This could lead to remote information disclosure with no additional execution…

  • CVE-2020-27024HigDec 15, 2020
    risk 0.49cvss 7.5epss 0.01

    In smp_br_state_machine_event of smp_br_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure triggered by a malformed Bluetooth packet, with no additional execution privileges needed. User interaction is…

  • CVE-2020-0460HigDec 14, 2020
    risk 0.49cvss 7.5epss 0.01

    In createNameCredentialDialog of CertInstaller.java, there exists the possibility of improperly installed certificates due to a logic error. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0442HigNov 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In Message and toBundle of Notification.java, there is a possible UI slowdown or crash due to improper input validation. This could lead to remote denial of service if a malicious contact file is received, with no additional execution privileges needed. User interaction is not…

  • CVE-2020-0441HigNov 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In Message and toBundle of Notification.java, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service requiring a device reset to fix with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0413HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.01

    In gatt_process_read_by_type_rsp of gatt_cl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth server with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0377HigOct 14, 2020
    risk 0.49cvss 7.5epss 0.02

    In gatt_process_read_by_type_rsp of gatt_cl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth server with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2020-0300HigSep 18, 2020
    risk 0.49cvss 7.5epss 0.01

    In NFC, there is a possible out of bounds read due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-148736216

  • CVE-2020-0286HigSep 18, 2020
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth AVRCP, there is a possible leak of audio metadata due to residual data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:…

  • CVE-2020-0254HigAug 11, 2020
    risk 0.49cvss 7.5epss 0.00

    There is a possible out of bounds read due to an incorrect bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-152647751

  • CVE-2020-0214HigJun 11, 2020
    risk 0.49cvss 7.5epss 0.01

    In ce_t4t_process_select_file_cmd of ce_t4t.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0176HigJun 11, 2020
    risk 0.49cvss 7.5epss 0.01

    In avdt_msg_prs_rej of avdt_msg.cc, there is a possible out-of-bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2020-0142HigJun 11, 2020
    risk 0.49cvss 7.5epss 0.01

    In rw_i93_sm_format of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2020-0128HigJun 11, 2020
    risk 0.49cvss 7.5epss 0.01

    In addPacket of AMPEG4ElementaryAssembler, there is an out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges required. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2019-9474HigMar 15, 2020
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-10 Android ID:…

  • CVE-2020-0062HigMar 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In Euicc, there is a possible information disclosure due to an included test Certificate. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android…

  • CVE-2020-0038HigMar 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In rw_i93_sm_update_ndef of rw_i93.cc, there is a possible read of uninitialized data due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2020-0037HigMar 10, 2020
    risk 0.49cvss 7.5epss 0.01

    In rw_i93_sm_set_read_only of rw_i93.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2011-3901HigFeb 12, 2020
    risk 0.49cvss 7.5epss 0.01

    Android SQLite Journal before 4.0.1 has an information disclosure vulnerability.

  • CVE-2019-5815HigDec 11, 2019
    risk 0.49cvss 7.5epss 0.02

    Type confusion in xsltNumberFormatGetMultipleLevel prior to libxslt 1.1.33 could allow attackers to potentially exploit heap corruption via crafted XML data.

  • CVE-2019-2232HigDec 6, 2019
    risk 0.49cvss 7.5epss 0.01

    In handleRun of TextLine.java, there is a possible application crash due to improper input validation. This could lead to remote denial of service when processing Unicode with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2019-2230HigDec 6, 2019
    risk 0.49cvss 7.5epss 0.01

    In nfcManager_routeAid and nfcManager_unrouteAid of NativeNfcManager.cpp, there is possible memory reuse due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2019-2211HigNov 13, 2019
    risk 0.49cvss 7.5epss 0.01

    In createProjectionMapForQuery of TvProvider.java, there is possible SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1…

  • CVE-2019-2208HigNov 13, 2019
    risk 0.49cvss 7.5epss 0.01

    In PromiseBuiltinsAssembler::NewPromiseCapability of builtins-promise.cc, there is a possible out of bounds read in v8 JIT code due to a bug in code generation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is…

  • CVE-2011-2335HigNov 12, 2019
    risk 0.49cvss 7.5epss 0.01

    A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSelector function.

  • CVE-2011-1298HigNov 6, 2019
    risk 0.49cvss 7.5epss 0.01

    An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore::GraphicsContext::fillRect function.

  • CVE-2019-9424HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.00

    In the Screen Lock, there is a possible information disclosure due to an unusual root cause. In certain circumstances, the setting to hide the unlock pattern can be ignored. Product: AndroidVersions: Android-10Android ID: A-110941092

  • CVE-2019-9422HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9402HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9401HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9398HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9395HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9394HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is possible controlled termination due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9390HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9388HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation. Product:…

  • CVE-2019-9381HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In netd, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-122677612

  • CVE-2019-9332HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9331HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9329HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to uninitialized data. This could lead to remote information disclosure, with no additional privileges required. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112917952

  • CVE-2019-9328HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure, with no additional privileges required. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9326HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9311HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible crash due to an integer overflow. This could lead to remote denial of service on incoming calls with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9284HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure, with no additional privileges required. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-9281HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In GoogleContactsSyncAdapter, there is a possible path traversal due to improper input sanitization. This could lead to a bypass of user interaction requirements with no additional execution privileges needed. User interaction is not needed for exploitation. Product:…

  • CVE-2019-9265HigSep 27, 2019
    risk 0.49cvss 7.5epss 0.01

    In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android…

Page 100 of 229