Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

google android 4.3 vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv3
CVE-2015-9547
An issue was discovered on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of the log file if the error message is "Unhandled exception in Dalvik...
Google Android 4.3Google Android 4.4.2
7.5
CVSSv3
CVE-2016-11046
An issue was discovered on Samsung mobile devices with JBP(4.3), KK(4.4), and L(5.0/5.1) software. Because of a misused whitelist, attackers can reach the radio layer (aka RIL or RILD) to place calls or send SMS messages. The Samsung ID is SVE-2016-5733 (May 2016)....
Google Android 4.3Google Android 4.4Google Android 5.0Google Android 5.1
NA
CVE-2014-3100
Stack-based buffer overflow in the encode_key function in /system/bin/keystore in the KeyStore service in Android 4.3 allows attackers to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, via a...
Google Android 4.3
NA
CVE-2013-7372
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache Harmony through 6.0M3, as used in the Java Cryptography Architecture (JCA) in...
Google Android 4.0Apache HarmonyGoogle Android 4.3Google Android 4.0.3Google Android 4.0.1Google Android 4.2.2Google Android 4.2.1Google Android 4.2Google Android 4.1.2Google Android 4.1Google AndroidGoogle Android 4.0.4Google Android 4.0.2
NA
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android before 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows attackers to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interface at...
Google Android 4.0.3Google Android 4.0.2Google Android 4.0.1Google Android 4.0Google AndroidGoogle Android 4.3Google Android 4.2.2Google Android 4.2.1Google Android 4.2Google Android 4.1Google Android 4.1.2Google Android 4.0.4Lenovo Shareit
NA
CVE-2013-6271
Android 4.0 through 4.3 allows attackers to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UNSPECIFIED option....
Google Android 4.2.1Google Android 4.0Google Android 4.2Google Android 4.0.2Google Android 4.0.3Google Android 4.0.4Google Android 4.1Google Android 4.3Google Android 4.2.2Google Android 4.0.1Google Android 4.1.2
5.5
CVSSv3
CVE-2016-6767
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4. Android ID: A-31833604....
Google Android 4.0.3Google Android 4.0.4Google Android 4.1Google Android 4.1.2Google Android 4.2Google Android 4.4Google Android 4.4.1Google Android 4.4.2Google Android 4.4.3Google Android 4.0Google Android 4.0.2Google Android 4.2.2Google Android 4.3.1Google Android 4.4.4Google Android 4.0.1Google Android 4.2.1Google Android 4.3
7.5
CVSSv3
CVE-2016-7988
On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.[Samsung].android.intent.action.SET_WIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a...
Google Android 4.4.1Google Android 4.4Google Android 4.3.1Google Android 4.3Google Android 4.2.2Google Android 5.1.0Google Android 5.1Google Android 5.0.2Google Android 5.0.1Google Android 6.0Google Android 4.4.4Google Android 4.4.2Google Android 6.0.1Google Android 5.1.1Google Android 5.0Google Android 4.4.3
7.5
CVSSv3
CVE-2016-3753
mediaserver in Android 4.x before 4.4.4 allows remote attackers to obtain sensitive information via unspecified vectors, aka internal bug 27210135....
Google Android 4.4.3Google Android 4.2.1Google Android 4.1.2Google Android 4.0.1Google Android 4.1Google Android 4.0.4Google Android 4.0.3Google Android 4.0.2Google Android 4.4.1Google Android 4.4Google Android 4.3.1Google Android 4.3Google Android 4.4.2Google Android 4.2.2Google Android 4.2Google Android 4.0
5.5
CVSSv3
CVE-2016-3818
libc in Android 4.x before 4.4.4 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702....
Google Android 4.4.2Google Android 4.4Google Android 4.2Google Android 4.1Google Android 4.4.3Google Android 4.4.1Google Android 4.1.2Google Android 4.0.4Google Android 4.3.1Google Android 4.3Google Android 4.2.2Google Android 4.2.1Google Android 4.0.3Google Android 4.0.2Google Android 4.0.1Google Android 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
elevation of privilegeCVE-2022-42331CVE-2023-24709CVE-2023-27569open redirectinjectionCVE-2023-27087
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook