Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-21087
An issue exists on Samsung mobile devices with L(5.x), M(6.x), and N(7.x) software. There is a vnswap heap-based buffer overflow via the store function, with resultant privilege escalation. The Samsung ID is SVE-2017-10599 (January 2018).
Google Android 5.0
Google Android 5.0.1
Google Android 5.0.2
Google Android 5.1
Google Android 5.1.0
Google Android 5.1.1
Google Android 6.0
Google Android 6.0.1
Google Android 7.0
Google Android 7.1.0
Google Android 7.1.1
Google Android 7.1.2
9.8
CVSSv3
CVE-2017-7375
A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes). Depending on the context, this may expose a higher-risk attack surfa...
Xmlsoft Libxml2
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 7.0
Google Android 5.1.1
Google Android 6.0.1
Google Android 5.0.2
Google Android 7.1.1
Google Android 7.1.2
Google Android 4.4.4
Google Android 6.0
Google Android 7.0
Xmlsoft Libxml2 2.9.4
9.8
CVSSv3
CVE-2017-7376
Buffer overflow in libxml2 allows remote malicious users to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.
Xmlsoft Libxml2
Google Android 7.1.2
Google Android 6.0.1
Google Android 5.0.2
Google Android 5.1.1
Google Android 4.4.4
Google Android 7.1.1
Google Android 7.0
Google Android 6.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 Github repository
9.8
CVSSv3
CVE-2017-0807
An elevation of privilege vulnerability in the Android framework (ui framework). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35056974.
Google Android 6.0.1
Google Android 7.1.1
Google Android 4.4.4
Google Android 5.0.2
Google Android 5.1.1
Google Android 7.1.2
Google Android 6.0
Google Android 7.0
1 Github repository
9.8
CVSSv3
CVE-2016-1155
HTTP header injection vulnerability in the URLConnection class in Android OS 2.2 up to and including 6.0 allows remote malicious users to execute arbitrary scripts or set arbitrary values in cookies.
Google Android 2.2
Google Android 2.2.1
Google Android 2.2.2
Google Android 2.2.3
Google Android 3.2.1
Google Android 3.2.2
Google Android 3.2.4
Google Android 3.2.6
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 2.3.3
Google Android 2.3.4
Google Android 2.3.5
Google Android 2.3.6
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.2.1
Google Android 5.1.0
9.8
CVSSv3
CVE-2014-7920
mediaserver in Android 2.2 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7921.
Google Android 2.2.3
Google Android 3.2.6
Google Android 4.2
Google Android 4.1
Google Android 3.2.4
Google Android 5.0.2
Google Android 3.2
Google Android 3.2.2
Google Android 4.0.2
Google Android 2.3
Google Android 4.4.3
Google Android 2.3.6
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 2.3.3
Google Android 4.4.4
Google Android 3.0
Google Android 4.2.1
Google Android 2.3.1
Google Android 2.3.5
Google Android 5.0.1
2 Github repositories
9.8
CVSSv3
CVE-2014-7921
mediaserver in Android 4.0.3 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7920.
Google Android 4.2
Google Android 4.1
Google Android 5.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.4.4
Google Android 4.2.1
Google Android 5.0.1
Google Android 5.0
Google Android 4.0.3
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
2 Github repositories
9.8
CVSSv3
CVE-2016-7990
On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-201...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.1
Google Android 4.2.2
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 4.4.2
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4
Google Android 4.3
Google Android 5.1
Google Android 5.0.1
Google Android 4.4.1
Google Android 4.3.1
9.8
CVSSv3
CVE-2016-3840
Conscrypt in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-05 does not properly identify session reuse, which allows remote malicious users to execute arbitrary code via unspecified vectors, aka internal bug 28751153.
Google Android 5.0.1
Google Android 5.1
Google Android 4.1
Google Android 4.1.2
Google Android 4.4.2
Google Android 4.4.3
Google Android 5.1.0
Google Android 4.0
Google Android 4.2
Google Android 4.2.1
Google Android 6.0
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3
Google Android 6.0.1
Google Android 5.0
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.3.1
Google Android 4.4
Google Android 4.4.1
9.8
CVSSv3
CVE-2016-3819
Integer overflow in codecs/on2/h264dec/source/h264bsd_dpb.c in libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 allows remote malicious users to execute arbitrary code or cause a denial of service...
Google Android 5.1
Google Android 5.0.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 6.0
Google Android 5.1.0
Google Android 4.4
Google Android 4.3.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 5.0
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.2
Google Android 6.0.1
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.1.2
Google Android 4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »