Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

google android 2.2.3 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2011-1823
The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are received from a PF_NETLINK socket, which allows local users to execute arbitrary code and gain root privileges via a negative index that bypasses a maximum-only signed integer check in...
Google Android 3.0Google Android 2.3Google Android 2.3.2Google Android 2.3.1Google Android 2.2Google Android 2.2.2Google Android 2.3.3Google Android 2.1Google Android 2.2.3Google Android 2.2.1
NA
CVE-2011-1350
The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device....
Google Android 2.3.4Google Android 2.3.3Google Android 2.3.2Google Android 2.3.1Google AndroidGoogle Android 2.2.3Google Android 2.2.1Google Android 1.6Google Android 1.1Google Android 2.2Google Android 2.1Google Android 2.0.1Google Android 2.0Google Android 2.3Google Android 2.2.2Google Android 1.5Google Android 1.0
NA
CVE-2011-1352
The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device....
Google Android 2.3.4Google Android 1.1Google Android 1.0Google AndroidGoogle Android 2.3.3Google Android 2.3.1Google Android 2.0.1Google Android 1.6Google Android 2.2.3Google Android 2.2.2Google Android 2.2.1Google Android 2.2Google Android 2.3.2Google Android 2.3Google Android 2.1Google Android 2.0Google Android 1.5
NA
CVE-2013-4787
Android 1.6 Donut through 4.2 Jelly Bean does not properly check cryptographic signatures for applications, which allows attackers to execute arbitrary code via an application package file (APK) that is modified in a way that does not violate the cryptographic signature,...
Google Android 2.3.3Google Android 2.3.4Google Android 4.0Google Android 4.1.2Google Android 4.0.4Google Android 4.0.3Google Android 4.0.2Google Android 4.2Google Android 4.0.1Google Android 2.3Google Android 2.2.2Google Android 1.6Google Android 2.1Google Android 3.1Google Android 2.3.2Google Android 3.2.2Google Android 3.2.1Google Android 2.2.1Google Android 2.3.5Google Android 2.2Google Android 2.3.6Google Android 3.0Google Android 2.3.7Google Android 4.1Google Android 3.2.4Google Android 3.2Google Android 2.2.3Google Android 2.3.1Google Android 2.0Google Android 2.0.1Google Android 3.2.6
NA
CVE-2011-3918
The Zygote process in Android 4.0.3 and earlier accepts fork requests from processes with arbitrary UIDs, which allows remote attackers to cause a denial of service (reboot loop) via a crafted application....
Google Android 3.1Google Android 3.2Google Android 2.1Google Android 2.3.6Google Android 2.3.5Google Android 2.2Google Android 2.3.7Google Android 1.0Google Android 4.0.1Google Android 4.0Google Android 3.2.4Google Android 2.2.1Google Android 2.3.2Google Android 2.3Google Android 2.3.4Google Android 1.5Google AndroidGoogle Android 4.0.2Google Android 3.2.6Google Android 3.0Google Android 2.3.1Google Android 2.0Google Android 2.3.3Google Android 2.0.1Google Android 3.2.2Google Android 3.2.1Google Android 2.2.2Google Android 2.2.3Google Android 1.6Google Android 1.1
9.8
CVSSv3
CVE-2014-7920
mediaserver in Android 2.2 through 5.x before 5.1 allows attackers to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7921....
Google Android 3.2.4Google Android 3.2.6Google Android 2.3.1Google Android 2.3.2Google Android 4.0.2Google Android 4.0.3Google Android 4.2Google Android 4.2.1Google Android 4.4.4Google Android 2.3.7Google Android 3.0Google Android 2.2Google Android 2.3.3Google Android 2.3.4Google Android 4.0.4Google Android 4.1Google Android 4.2.2Google Android 4.3Google Android 3.1Google Android 3.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 2.3.5Google Android 2.3.6Google Android 4.1.2Google Android 5.0Google Android 4.3.1Google Android 4.4Google Android 4.4.1Google Android 3.2.1Google Android 3.2.2Google Android 2.3Google Android 4.0Google Android 4.0.1Google Android 5.0.1Google Android 5.0.2Google Android 4.4.2Google Android 4.4.3
NA
CVE-2013-7373
Android before 4.4 does not properly arrange for seeding of the OpenSSL PRNG, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging use of the PRNG within multiple applications....
Google Android 1.0Google Android 1.1Google Android 1.5Google Android 1.6Google Android 2.3.4Google Android 2.3.5Google Android 2.3.6Google Android 2.3.7Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 4.2.2Google Android 2.0Google Android 2.1Google Android 2.3Google Android 2.3.2Google Android 3.1Google Android 3.2.1Google Android 4.0.1Google Android 4.0.3Google Android 4.1Google Android 4.3Google Android 2.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 3.2.2Google Android 3.2.4Google Android 3.2.6Google Android 4.0Google Android 2.0.1Google Android 2.3.1Google Android 2.3.3Google Android 3.0Google Android 3.2Google Android 4.0.2Google Android 4.0.4Google Android
NA
CVE-2014-8507
Multiple SQL injection vulnerabilities in the queryLastApp method in packages/WAPPushManager/src/com/android/smspush/WapPushManager.java in the WAPPushManager module in Android before 5.0.0 allow remote attackers to execute arbitrary SQL commands, and consequently launch an...
Google Android 4.0.3Google Android 4.0.2Google Android 4.0.1Google Android 4.0Google Android 2.3.2Google Android 2.3.1Google Android 4.4Google Android 4.3.1Google Android 4.3Google Android 4.2.2Google Android 4.2.1Google Android 3.2Google Android 3.1Google Android 3.0Google Android 2.3.7Google Android 2.1Google Android 2.0.1Google Android 2.0Google Android 1.6Google Android 2.3Google Android 2.2.3Google AndroidGoogle Android 4.4.1Google Android 4.1.2Google Android 4.0.4Google Android 3.2.6Google Android 3.2.2Google Android 2.3.5Google Android 2.3.3Google Android 2.2.1Google Android 2.2Google Android 1.5Google Android 1.0Google Android 4.4.3Google Android 4.4.2Google Android 4.2Google Android 4.1Google Android 3.2.4Google Android 3.2.1Google Android 2.3.6Google Android 2.3.4Google Android 2.2.2Google Android 1.1
NA
CVE-2014-7911
luni/src/main/java/java/io/ObjectInputStream.java in the java.io.ObjectInputStream implementation in Android before 5.0.0 does not verify that deserialization will result in an object that met the requirements for serialization, which allows attackers to execute arbitrary code...
Google Android 2.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 3.2.2Google Android 3.2.4Google Android 3.2.6Google Android 4.0Google Android 4.4.1Google Android 4.4.2Google Android 4.4.3Google AndroidGoogle Android 2.0.1Google Android 2.3Google Android 2.3.1Google Android 3.0Google Android 3.2Google Android 4.0.2Google Android 4.0.4Google Android 4.2.2Google Android 4.3.1Google Android 1.0Google Android 1.1Google Android 1.5Google Android 1.6Google Android 2.3.3Google Android 2.3.4Google Android 2.3.5Google Android 2.3.6Google Android 2.3.7Google Android 4.1Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 2.0Google Android 2.1Google Android 2.3.2Google Android 3.1Google Android 3.2.1Google Android 4.0.1Google Android 4.0.3Google Android 4.3Google Android 4.4
NA
CVE-2014-8610
AndroidManifest.xml in Android before 5.0.0 does not require the SEND_SMS permission for the SmsReceiver receiver, which allows attackers to send stored SMS messages, and consequently transmit arbitrary new draft SMS messages or trigger additional per-message charges from a...
Google Android 4.4.3Google Android 1.5Google Android 1.6Google Android 2.0Google Android 2.3.5Google Android 2.3.6Google Android 2.3.7Google Android 3.0Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 4.2.2Google Android 4.3Google Android 1.1Google Android 2.1Google Android 2.2Google Android 2.3Google Android 2.3.2Google Android 2.3.4Google Android 3.1Google Android 3.2.1Google Android 4.0.3Google Android 4.1Google Android 4.4Google Android 4.4.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 3.2.4Google Android 3.2.6Google Android 4.0Google Android 4.0.1Google Android 1.0Google AndroidGoogle Android 2.0.1Google Android 2.3.1Google Android 2.3.3Google Android 3.2Google Android 3.2.2Google Android 4.0.2Google Android 4.0.4Google Android 4.3.1Google Android 4.4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
wirelessSQLCVE-2023-1454overflowCVE-2022-48425CVE-2023-25064CVE-2023-28107
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook