Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

google android 2.0 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2010-4832
Android OS before 2.2 does not display the correct SSL certificate in certain cases, which might allow remote attackers to spoof trusted web sites via a web page containing references to external sources in which (1) the certificate of the last loaded resource is checked,...
Google Android 1.1Google AndroidGoogle Android 2.0.1Google Android 2.0Google Android 1.6Google Android 1.5Google Android 1.0
NA
CVE-2011-1001
dexdump in Android SDK before 2.3 does not properly perform structural verification, which allows user-assisted remote attackers to cause a denial of service (dexdump crash) and possibly execute arbitrary code via a malformed APK or dex file that calls a method using more...
Google Android Sdk 1.5Google Android Sdk 1.1Google Android SdkGoogle Android Sdk 2.0Google Android Sdk 1.6Google Android Sdk 2.1Google Android Sdk 2.0.1
NA
CVE-2011-1350
The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device....
Google Android 2.3.4Google Android 2.3.3Google Android 2.3.2Google Android 2.3.1Google AndroidGoogle Android 2.2.3Google Android 2.2.1Google Android 1.6Google Android 1.1Google Android 2.2Google Android 2.1Google Android 2.0.1Google Android 2.0Google Android 2.3Google Android 2.2.2Google Android 1.5Google Android 1.0
NA
CVE-2011-1352
The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device....
Google Android 2.3.4Google Android 1.1Google Android 1.0Google AndroidGoogle Android 2.3.3Google Android 2.3.1Google Android 2.0.1Google Android 1.6Google Android 2.2.3Google Android 2.2.2Google Android 2.2.1Google Android 2.2Google Android 2.3.2Google Android 2.3Google Android 2.1Google Android 2.0Google Android 1.5
NA
CVE-2013-4787
Android 1.6 Donut through 4.2 Jelly Bean does not properly check cryptographic signatures for applications, which allows attackers to execute arbitrary code via an application package file (APK) that is modified in a way that does not violate the cryptographic signature,...
Google Android 2.3.3Google Android 2.3.4Google Android 4.0Google Android 4.1.2Google Android 4.0.4Google Android 4.0.3Google Android 4.0.2Google Android 4.2Google Android 4.0.1Google Android 2.3Google Android 2.2.2Google Android 1.6Google Android 2.1Google Android 3.1Google Android 2.3.2Google Android 3.2.2Google Android 3.2.1Google Android 2.2.1Google Android 2.3.5Google Android 2.2Google Android 2.3.6Google Android 3.0Google Android 2.3.7Google Android 4.1Google Android 3.2.4Google Android 3.2Google Android 2.2.3Google Android 2.3.1Google Android 2.0Google Android 2.0.1Google Android 3.2.6
NA
CVE-2012-6636
The Android API before 17 does not properly restrict the WebView.addJavascriptInterface method, which allows remote attackers to execute arbitrary methods of Java objects by using the Java Reflection API within crafted JavaScript code that is loaded into the WebView component in...
Google Android ApiGoogle Android Api 15.0Google Android Api 14.0Google Android Api 13.0Google Android Api 8.0Google Android Api 7.0Google Android Api 6.0Google Android Api 5.0Google Android Api 12.0Google Android Api 10.0Google Android Api 3.0Google Android Api 1.0Google Android Api 11.0Google Android Api 9.0Google Android Api 4.0Google Android Api 2.0
NA
CVE-2013-7373
Android before 4.4 does not properly arrange for seeding of the OpenSSL PRNG, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging use of the PRNG within multiple applications....
Google Android 1.0Google Android 1.1Google Android 1.5Google Android 1.6Google Android 2.3.4Google Android 2.3.5Google Android 2.3.6Google Android 2.3.7Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 4.2.2Google Android 2.0Google Android 2.1Google Android 2.3Google Android 2.3.2Google Android 3.1Google Android 3.2.1Google Android 4.0.1Google Android 4.0.3Google Android 4.1Google Android 4.3Google Android 2.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 3.2.2Google Android 3.2.4Google Android 3.2.6Google Android 4.0Google Android 2.0.1Google Android 2.3.1Google Android 2.3.3Google Android 3.0Google Android 3.2Google Android 4.0.2Google Android 4.0.4Google Android
NA
CVE-2011-3918
The Zygote process in Android 4.0.3 and earlier accepts fork requests from processes with arbitrary UIDs, which allows remote attackers to cause a denial of service (reboot loop) via a crafted application....
Google Android 3.1Google Android 3.2Google Android 2.1Google Android 2.3.6Google Android 2.3.5Google Android 2.2Google Android 2.3.7Google Android 1.0Google Android 4.0.1Google Android 4.0Google Android 3.2.4Google Android 2.2.1Google Android 2.3.2Google Android 2.3Google Android 2.3.4Google Android 1.5Google AndroidGoogle Android 4.0.2Google Android 3.2.6Google Android 3.0Google Android 2.3.1Google Android 2.0Google Android 2.3.3Google Android 2.0.1Google Android 3.2.2Google Android 3.2.1Google Android 2.2.2Google Android 2.2.3Google Android 1.6Google Android 1.1
NA
CVE-2014-8507
Multiple SQL injection vulnerabilities in the queryLastApp method in packages/WAPPushManager/src/com/android/smspush/WapPushManager.java in the WAPPushManager module in Android before 5.0.0 allow remote attackers to execute arbitrary SQL commands, and consequently launch an...
Google Android 4.0.3Google Android 4.0.2Google Android 4.0.1Google Android 4.0Google Android 2.3.2Google Android 2.3.1Google Android 4.4Google Android 4.3.1Google Android 4.3Google Android 4.2.2Google Android 4.2.1Google Android 3.2Google Android 3.1Google Android 3.0Google Android 2.3.7Google Android 2.1Google Android 2.0.1Google Android 2.0Google Android 1.6Google Android 2.3Google Android 2.2.3Google AndroidGoogle Android 4.4.1Google Android 4.1.2Google Android 4.0.4Google Android 3.2.6Google Android 3.2.2Google Android 2.3.5Google Android 2.3.3Google Android 2.2.1Google Android 2.2Google Android 1.5Google Android 1.0Google Android 4.4.3Google Android 4.4.2Google Android 4.2Google Android 4.1Google Android 3.2.4Google Android 3.2.1Google Android 2.3.6Google Android 2.3.4Google Android 2.2.2Google Android 1.1
NA
CVE-2014-7911
luni/src/main/java/java/io/ObjectInputStream.java in the java.io.ObjectInputStream implementation in Android before 5.0.0 does not verify that deserialization will result in an object that met the requirements for serialization, which allows attackers to execute arbitrary code...
Google Android 2.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 3.2.2Google Android 3.2.4Google Android 3.2.6Google Android 4.0Google Android 4.4.1Google Android 4.4.2Google Android 4.4.3Google AndroidGoogle Android 2.0.1Google Android 2.3Google Android 2.3.1Google Android 3.0Google Android 3.2Google Android 4.0.2Google Android 4.0.4Google Android 4.2.2Google Android 4.3.1Google Android 1.0Google Android 1.1Google Android 1.5Google Android 1.6Google Android 2.3.3Google Android 2.3.4Google Android 2.3.5Google Android 2.3.6Google Android 2.3.7Google Android 4.1Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 2.0Google Android 2.1Google Android 2.3.2Google Android 3.1Google Android 3.2.1Google Android 4.0.1Google Android 4.0.3Google Android 4.3Google Android 4.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
wirelessSQLCVE-2023-1454overflowCVE-2022-48425CVE-2023-25064CVE-2023-28107
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook