VYPR

Vendor CVEs

Google

All CVEs

11,416 total · sorted by risk
  • CVE-2020-0063HigMar 10, 2020
    risk 0.47cvss 7.3epss 0.00

    In SurfaceFlinger, it is possible to override UI confirmation screen protected by the TEE. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android kernelAndroid…

  • CVE-2019-2200HigFeb 13, 2020
    risk 0.47cvss 7.3epss 0.00

    In updatePermissions of PermissionManagerService.java, it may be possible for a malicious app to obtain a custom permission from another app due to a permission bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is…

  • CVE-2019-9463HigSep 27, 2019
    risk 0.47cvss 7.3epss 0.00

    In Platform, there is a possible bypass of user interaction requirements due to background app interception. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions:…

  • CVE-2019-9386HigSep 27, 2019
    risk 0.47cvss 7.3epss 0.00

    In NFC server, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions:…

  • CVE-2019-9358HigSep 27, 2019
    risk 0.47cvss 7.3epss 0.00

    In NFC, there is a possible out of bounds write due to a missing bounds check. This could lead to a to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID:…

  • CVE-2019-2125HigAug 20, 2019
    risk 0.47cvss 7.3epss 0.00

    In ChangeDefaultDialerDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a local app without the user's informed consent, with no additional privileges needed. User…

  • CVE-2019-2122HigAug 20, 2019
    risk 0.47cvss 7.3epss 0.00

    In LockTaskController.lockKeyguardIfNeeded of the LockTaskController.java, there was a difference in the handling of the default case between the WindowManager and the Settings. This could lead to a local escalation of privilege with no additional execution privileges needed.…

  • CVE-2019-2043HigMay 8, 2019
    risk 0.47cvss 7.3epss 0.00

    In SmsDefaultDialog.onStart of SmsDefaultDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a local app without the user's informed consent, with no additional privileges…

  • CVE-2019-2041HigApr 19, 2019
    risk 0.47cvss 7.3epss 0.00

    In the configuration of NFC modules on certain devices, there is a possible failure to distinguish individual devices due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for…

  • CVE-2018-9587HigFeb 11, 2019
    risk 0.47cvss 7.3epss 0.00

    In savePhotoFromUriToUri of ContactPhotoUtils.java in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is possible unauthorized access to files within the contact app due to a confused deputy scenario. This could lead to local escalation…

  • CVE-2018-9445MedNov 6, 2018
    risk 0.47cvss 6.8epss 0.01

    In readMetadata of Utils.cpp, there is a possible path traversal bug due to a confused deputy. This could lead to local escalation of privilege when mounting a USB device with no additional execution privileges needed. User interaction is not needed for exploitation. Product:…

  • CVE-2017-13271HigApr 4, 2018
    risk 0.47cvss 7.3epss 0.00

    A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69006799.

  • CVE-2017-13270HigApr 4, 2018
    risk 0.47cvss 7.3epss 0.00

    A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69474744.

  • CVE-2017-13265HigApr 4, 2018
    risk 0.47cvss 7.3epss 0.00

    A elevation of privilege vulnerability in the Android system (OTA updates). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-36232423.

  • CVE-2017-13263HigApr 4, 2018
    risk 0.47cvss 7.3epss 0.00

    A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 8.0, 8.1. Android ID: A-69383160.

  • CVE-2017-13307HigApr 4, 2018
    risk 0.47cvss 7.3epss 0.00

    A elevation of privilege vulnerability in the Upstream kernel pci sysfs. Product: Android. Versions: Android kernel. Android ID: A-69128924.

  • CVE-2017-13306HigApr 4, 2018
    risk 0.47cvss 7.3epss 0.00

    A elevation of privilege vulnerability in the Upstream kernel mnh driver. Product: Android. Versions: Android kernel. Android ID: A-70295063.

  • CVE-2016-3841HigAug 6, 2016
    risk 0.47cvss 7.3epss 0.00

    The IPv6 stack in the Linux kernel before 4.3.3 mishandles options data, which allows local users to gain privileges or cause a denial of service (use-after-free and system crash) via a crafted sendmsg system call.

  • CVE-2016-3850HigAug 5, 2016
    risk 0.47cvss 7.3epss 0.00

    Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-08-05 on Nexus 5, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted header field in a boot image, aka Android internal bug 27917291 and Qualcomm internal bug…

  • CVE-2016-2497HigAug 5, 2016
    risk 0.47cvss 7.3epss 0.01

    services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to increase intent-filter priority via a crafted application, aka internal…

  • CVE-2016-0728HigFeb 8, 2016
    risk 0.47cvss 7.8epss 0.04

    The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service (integer overflow and use-after-free) via crafted…

  • CVE-2014-9322HigDec 17, 2014
    risk 0.47cvss 7.8epss 0.01

    arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the…

  • CVE-2026-11269HigJun 5, 2026
    risk 0.46cvss 7.1epss 0.00

    Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Low)

  • CVE-2026-3259HigApr 23, 2026
    risk 0.46cvss epss 0.00

    A Generation of Error Message Containing Sensitive Information vulnerability in the Materialized View Refresh mechanism in Google BigQuery on Google Cloud Platform allows an authenticated user to potentially disclose sensitive data using a crafted materialized view that triggers…

  • CVE-2025-12472HigNov 19, 2025
    risk 0.46cvss epss 0.00

    An attacker with a Looker Developer role could manipulate a LookML project to exploit a race condition during Git directory deletion, leading to arbitrary command execution on the Looker instance. Looker-hosted and Self-hosted were found to be vulnerable. This issue has…

  • CVE-2025-11206HigNov 6, 2025
    risk 0.46cvss 7.1epss 0.00

    Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

  • CVE-2025-48545HigSep 4, 2025
    risk 0.46cvss 7.1epss 0.00

    In isSystemUid of AccountManagerService.java, there is a possible way for an app to access privileged APIs due to a confused deputy. This could lead to local privilege escalation with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2025-48537HigSep 4, 2025
    risk 0.46cvss 7.1epss 0.00

    In multiple locations, there is a possible way to persistently DoS the device due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2025-48533HigSep 4, 2025
    risk 0.46cvss 7.0epss 0.00

    In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2025-22442HigSep 2, 2025
    risk 0.46cvss 7.0epss 0.00

    In multiple functions of DevicePolicyManagerService.java, there is a possible way to install unauthorized applications into a newly created work profile due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User…

  • CVE-2024-49724HigJan 21, 2025
    risk 0.46cvss 7.0epss 0.00

    In multiple functions of AccountManagerService.java, there is a possible way to bypass permissions and launch protected activities due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed…

  • CVE-2018-9461HigJan 18, 2025
    risk 0.46cvss 7.0epss 0.00

    In onAttachFragment of ShareIntentActivity.java, there is a possible way for an app to read files in the messages app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2018-9468HigNov 20, 2024
    risk 0.46cvss 7.1epss 0.00

    In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a permissions bypass. This could lead to local information disclosure and file rewriting with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-23716HigSep 11, 2024
    risk 0.46cvss 7.0epss 0.00

    In DevmemIntPFNotify of devicemem_server.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-34731HigAug 15, 2024
    risk 0.46cvss 7.0epss 0.00

    In multiple functions of TranscodingResourcePolicy.cpp, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-34725HigJul 9, 2024
    risk 0.46cvss 7.0epss 0.00

    In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-34724HigJul 9, 2024
    risk 0.46cvss 7.0epss 0.00

    In _UnrefAndMaybeDestroy of pmr.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-31327HigJul 9, 2024
    risk 0.46cvss 7.0epss 0.00

    In multiple functions of MessageQueueBase.h, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-32920HigJun 13, 2024
    risk 0.46cvss 7.1epss 0.00

    In set_secure_reg of sac_handler.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of 4 bytes of stack memory with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-32917HigJun 13, 2024
    risk 0.46cvss 7.1epss 0.00

    In pl330_dma_from_peri_start() of fp_spi_dma.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-32899HigJun 13, 2024
    risk 0.46cvss 7.0epss 0.00

    In gpu_pm_power_off_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected memory due to a race condition. This could lead to local escalation of privilege to TEE with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2024-32891HigJun 13, 2024
    risk 0.46cvss 7.0epss 0.00

    In sec_media_unprotect of media.c, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-22009HigMar 11, 2024
    risk 0.46cvss 7.1epss 0.00

    In init_data of , there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-0041HigFeb 16, 2024
    risk 0.46cvss 7.0epss 0.00

    In removePersistentDot of SystemStatusAnimationSchedulerImpl.kt, there is a possible race condition due to a logic error in the code. This could lead to local escalation of privilege that fails to remove the persistent dot with no additional execution privileges needed. User…

  • CVE-2023-40131HigOct 27, 2023
    risk 0.46cvss 7.0epss 0.00

    In GpuService of GpuService.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2023-21101HigJun 15, 2023
    risk 0.46cvss 7.0epss 0.00

    In multiple functions of WVDrmPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2023-2460HigMay 3, 2023
    risk 0.46cvss 7.1epss 0.01

    Insufficient validation of untrusted input in Extensions in Google Chrome prior to 113.0.5672.63 allowed an attacker who convinced a user to install a malicious extension to bypass file access checks via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2023-20958HigMar 24, 2023
    risk 0.46cvss 7.1epss 0.00

    In read_paint of ttcolr.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2021-39660HigDec 13, 2022
    risk 0.46cvss 7.0epss 0.00

    In TBD of TBD, there is a possible way to archive arbitrary code execution in kernel due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2022-20422HigOct 11, 2022
    risk 0.46cvss 7.0epss 0.00

    In emulation_proc_handler of armv8_deprecated.c, there is a possible way to corrupt memory due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

Page 107 of 229