Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 4.0.4 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2014-7951
Directory traversal vulnerability in the Android debug bridge (aka adb) in Android 4.0.4 allows physically proximate attackers with a direct connection to the target Android device to write to arbitrary files owned by system via a .. (dot dot) in the tar archive headers.
Google Android 4.0.4
1 EDB exploit
1 Github repository
NA
CVE-2013-6271
Android 4.0 up to and including 4.3 allows malicious users to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UN...
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.2.2
Google Android 4.1.2
1 Article
NA
CVE-2013-7372
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache Harmony up to and including 6.0M3, as used in the Java Cryptography Architecture ...
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.2.2
Apache Harmony
Google Android 4.1.2
NA
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android prior to 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows malicious users to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interf...
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.2.2
Google Android 4.1.2
Lenovo Shareit
1 Github repository
1 Article
NA
CVE-2013-4710
Android 3.0 up to and including 4.1.x on Disney Mobile, eAccess, KDDI, NTT DOCOMO, SoftBank, and other devices does not properly implement the WebView class, which allows remote malicious users to execute arbitrary methods of Java objects or cause a denial of service (reboot) via...
Google Android 3.2.6
Google Android 4.1
Google Android 3.2.4
Google Android 3.2
Google Android 3.2.2
Google Android 4.0.2
Google Android 4.0.4
Google Android 4.0.1
Google Android 3.0
Google Android 3.1
Google Android 4.0.3
Google Android 4.0
Google Android 3.2.1
Google Android 4.1.2
2 EDB exploits
2 Github repositories
1 Article
7.5
CVSSv3
CVE-2016-3753
mediaserver in Android 4.x prior to 4.4.4 allows remote malicious users to obtain sensitive information via unspecified vectors, aka internal bug 27210135.
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
5.5
CVSSv3
CVE-2016-3818
libc in Android 4.x prior to 4.4.4 allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
NA
CVE-2014-8609
The addAccount method in src/com/android/settings/accounts/AddAccountSettings.java in the Settings application in Android prior to 5.0.0 does not properly create a PendingIntent, which allows malicious users to use the SYSTEM uid for broadcasting an intent with arbitrary componen...
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.4
Google Android 4.4.1
Google Android
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
4 Github repositories
5.5
CVSSv3
CVE-2016-6767
A denial of service vulnerability in Mediaserver could enable an malicious user to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4. Android ID: A-31833...
Google Android 4.2
Google Android 4.1
Google Android 4.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.0.1
Google Android 4.4.4
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
9.8
CVSSv3
CVE-2014-7921
mediaserver in Android 4.0.3 up to and including 5.x prior to 5.1 allows malicious users to gain privileges. NOTE: This is a different vulnerability than CVE-2014-7920.
Google Android 4.2
Google Android 4.1
Google Android 5.0.2
Google Android 4.4.3
Google Android 4.0.4
Google Android 4.3
Google Android 4.4.4
Google Android 4.2.1
Google Android 5.0.1
Google Android 5.0
Google Android 4.0.3
Google Android 4.4
Google Android 4.4.1
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.2
Google Android 4.1.2
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »