Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-21087
An issue exists on Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software. There is a vnswap heap-based buffer overflow via the store function, with resultant privilege escalation. The Samsung ID is SVE-2017-10599 (January 2018).
Google Android 5.0
Google Android 5.0.1
Google Android 5.0.2
Google Android 5.1
Google Android 5.1.0
Google Android 5.1.1
Google Android 6.0
Google Android 6.0.1
Google Android 7.0
Google Android 7.1.0
Google Android 7.1.1
Google Android 7.1.2
9.8
CVSSv3
CVE-2017-18683
An issue exists on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. SVoice allows Hare Hunting during application installation. The Samsung ID is SVE-2016-6942 (February 2017).
Google Android 5.0
Google Android 5.1
Google Android 6.0
9.8
CVSSv3
CVE-2017-18684
An issue exists on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. SVoice allows provider seizure via an application that uses a custom provider. The Samsung ID is SVE-2016-6942 (February 2017).
Google Android 5.0
Google Android 5.1
Google Android 6.0
9.8
CVSSv3
CVE-2017-18690
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) (Exynos54xx, Exynos7420, Exynos8890, or Exynos8895 chipsets) software. There is a buffer overflow in the sensor hub. The Samsung ID is SVE-2016-7484 (January 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
Google Android 7.0
9.8
CVSSv3
CVE-2017-18693
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), M(6.0), and N(7.0) software. There is a buffer overflow in the fps sysfs entry. The Samsung ID is SVE-2016-7510 (January 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
Google Android 7.0
9.8
CVSSv3
CVE-2016-1155
HTTP header injection vulnerability in the URLConnection class in Android OS 2.2 up to and including 6.0 allows remote malicious users to execute arbitrary scripts or set arbitrary values in cookies.
Google Android 2.2
Google Android 2.2.1
Google Android 2.2.2
Google Android 2.2.3
Google Android 3.2.1
Google Android 3.2.2
Google Android 3.2.4
Google Android 3.2.6
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 2.3.3
Google Android 2.3.4
Google Android 2.3.5
Google Android 2.3.6
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.2.1
Google Android 5.1.0
9.8
CVSSv3
CVE-2014-7920
mediaserver in Android 2.2 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7921.
Google Android 2.2.3
Google Android 3.2.6
Google Android 4.2
Google Android 4.1
Google Android 3.2.4
Google Android 5.0.2
Google Android 3.2
Google Android 3.2.2
Google Android 4.0.2
Google Android 2.3
Google Android 4.4.3
Google Android 2.3.6
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 2.3.3
Google Android 4.4.4
Google Android 3.0
Google Android 4.2.1
Google Android 2.3.1
Google Android 2.3.5
Google Android 5.0.1
2 Github repositories
9.8
CVSSv3
CVE-2014-7921
mediaserver in Android 4.0.3 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7920.
Google Android 4.2
Google Android 4.1
Google Android 5.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.4.4
Google Android 4.2.1
Google Android 5.0.1
Google Android 5.0
Google Android 4.0.3
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
2 Github repositories
9.8
CVSSv3
CVE-2016-7990
On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-201...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.1
Google Android 4.2.2
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 4.4.2
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4
Google Android 4.3
Google Android 5.1
Google Android 5.0.1
Google Android 4.4.1
Google Android 4.3.1
9.8
CVSSv3
CVE-2016-3819
Integer overflow in codecs/on2/h264dec/source/h264bsd_dpb.c in libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 allows remote malicious users to execute arbitrary code or cause a denial of service...
Google Android 5.1
Google Android 5.0.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 6.0
Google Android 5.1.0
Google Android 4.4
Google Android 4.3.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 5.0
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.2
Google Android 6.0.1
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.1.2
Google Android 4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »