Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-21087
An issue exists on Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software. There is a vnswap heap-based buffer overflow via the store function, with resultant privilege escalation. The Samsung ID is SVE-2017-10599 (January 2018).
Google Android 5.0
Google Android 5.0.1
Google Android 5.0.2
Google Android 5.1
Google Android 5.1.0
Google Android 5.1.1
Google Android 6.0
Google Android 6.0.1
Google Android 7.0
Google Android 7.1.0
Google Android 7.1.1
Google Android 7.1.2
9.8
CVSSv3
CVE-2016-1155
HTTP header injection vulnerability in the URLConnection class in Android OS 2.2 up to and including 6.0 allows remote malicious users to execute arbitrary scripts or set arbitrary values in cookies.
Google Android 2.2
Google Android 2.2.1
Google Android 2.2.2
Google Android 2.2.3
Google Android 3.2.1
Google Android 3.2.2
Google Android 3.2.4
Google Android 3.2.6
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 2.3.3
Google Android 2.3.4
Google Android 2.3.5
Google Android 2.3.6
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.2.1
Google Android 5.1.0
9.8
CVSSv3
CVE-2014-7920
mediaserver in Android 2.2 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7921.
Google Android 2.2.3
Google Android 3.2.6
Google Android 4.2
Google Android 4.1
Google Android 3.2.4
Google Android 5.0.2
Google Android 3.2
Google Android 3.2.2
Google Android 4.0.2
Google Android 2.3
Google Android 4.4.3
Google Android 2.3.6
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 2.3.3
Google Android 4.4.4
Google Android 3.0
Google Android 4.2.1
Google Android 2.3.1
Google Android 2.3.5
Google Android 5.0.1
2 Github repositories
9.8
CVSSv3
CVE-2014-7921
mediaserver in Android 4.0.3 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7920.
Google Android 4.2
Google Android 4.1
Google Android 5.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.4.4
Google Android 4.2.1
Google Android 5.0.1
Google Android 5.0
Google Android 4.0.3
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
2 Github repositories
9.8
CVSSv3
CVE-2016-7990
On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-201...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.1
Google Android 4.2.2
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 4.4.2
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4
Google Android 4.3
Google Android 5.1
Google Android 5.0.1
Google Android 4.4.1
Google Android 4.3.1
9.8
CVSSv3
CVE-2016-3819
Integer overflow in codecs/on2/h264dec/source/h264bsd_dpb.c in libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 allows remote malicious users to execute arbitrary code or cause a denial of service...
Google Android 5.1
Google Android 5.0.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 6.0
Google Android 5.1.0
Google Android 4.4
Google Android 4.3.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 5.0
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.2
Google Android 6.0.1
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.1.2
Google Android 4.1
9.8
CVSSv3
CVE-2016-3821
libmedia in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 has certain incorrect declarations, which allows remote malicious users to execute arbitrary code or cause a denial of service (NULL pointer dereference ...
Google Android 6.0
Google Android 5.1.0
Google Android 4.4
Google Android 4.3.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 4.0.2
Google Android 6.0.1
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.1.2
Google Android 4.1
Google Android 5.1
Google Android 5.0.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.1
Google Android 4.0
Google Android 5.0
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.2
9.8
CVSSv3
CVE-2016-3840
Conscrypt in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-05 does not properly identify session reuse, which allows remote malicious users to execute arbitrary code via unspecified vectors, aka internal bug 28751153.
Google Android 5.0.1
Google Android 5.1
Google Android 4.1
Google Android 4.1.2
Google Android 4.4.2
Google Android 4.4.3
Google Android 5.1.0
Google Android 4.0
Google Android 4.2
Google Android 4.2.1
Google Android 6.0
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3
Google Android 6.0.1
Google Android 5.0
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.3.1
Google Android 4.4
Google Android 4.4.1
9.8
CVSSv3
CVE-2016-3745
Multiple buffer overflows in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 allow malicious users to gain privileges via a crafted application that provides an AudioEffect reply, as demonstrated by obtaining Sign...
Google Android 5.0.1
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.1.2
Google Android 4.0.1
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.0
Google Android 5.1
Google Android 4.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 4.0.2
Google Android 5.0
Google Android 4.4.2
Google Android 4.2.2
Google Android 4.2
Google Android 4.0
9.8
CVSSv3
CVE-2016-2506
DRMExtractor.cpp in libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 does not validate a certain offset value, which allows remote malicious users to execute arbitrary code or cause a denial of se...
Google Android 5.1.0
Google Android 5.0.1
Google Android 4.3
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0.1
Google Android 6.0.1
Google Android 6.0
Google Android 4.2
Google Android 4.1.2
Google Android 4.1
Google Android 4.0.4
Google Android 4.4.3
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.4
Google Android 5.1
Google Android 5.0
Google Android 4.3.1
Google Android 4.2.2
Google Android 4.0.2
Google Android 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »