Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 4.3 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2015-9547
An issue exists on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of the log file if the error message is "Unhandled exception in Dalvik VM," "...
Google Android 4.3
Google Android 4.4.2
5
CVSSv2
CVE-2016-11046
An issue exists on Samsung mobile devices with JBP(4.3), KK(4.4), and L(5.0/5.1) software. Because of a misused whitelist, attackers can reach the radio layer (aka RIL or RILD) to place calls or send SMS messages. The Samsung ID is SVE-2016-5733 (May 2016).
Google Android 4.3
Google Android 4.4
Google Android 5.0
Google Android 5.1
5.1
CVSSv2
CVE-2014-3100
Stack-based buffer overflow in the encode_key function in /system/bin/keystore in the KeyStore service in Android 4.3 allows malicious users to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, v...
Google Android 4.3
1 Github repository
8.8
CVSSv2
CVE-2013-6271
Android 4.0 up to and including 4.3 allows malicious users to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UN...
Google Android 4.2.1
Google Android 4.0
Google Android 4.2
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.1
Google Android 4.1.2
1 Article
7.5
CVSSv2
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android prior to 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows malicious users to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interf...
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1
Google Android 4.1.2
Google Android 4.0.4
Lenovo Shareit
1 Github repository
1 Article
5
CVSSv2
CVE-2013-7372
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache Harmony up to and including 6.0M3, as used in the Java Cryptography Architecture ...
Google Android 4.0
Apache Harmony
Google Android 4.3
Google Android 4.0.3
Google Android 4.0.1
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 4.1
Google Android
Google Android 4.0.4
Google Android 4.0.2
7.8
CVSSv2
CVE-2016-7988
On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.[Samsung].android.intent.action.SET_WIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a ...
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.2
Google Android 5.0.1
Google Android 6.0
Google Android 4.4.4
Google Android 4.4.2
Google Android 6.0.1
Google Android 5.1.1
Google Android 5.0
Google Android 4.4.3
7.8
CVSSv2
CVE-2016-7989
On Samsung Galaxy S4 through S7 devices, a malformed OTA WAP PUSH SMS containing an OMACP message sent remotely triggers an unhandled ArrayIndexOutOfBoundsException in Samsung's implementation of the WifiServiceImpl class within wifi-service.jar. This causes the Android runt...
Google Android 5.1.1
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.2
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 6.0.1
Google Android 5.0
Google Android 4.4.3
Google Android 4.3
Google Android 6.0
Google Android 5.0.1
Google Android 4.4.4
Google Android 4.2.2
10
CVSSv2
CVE-2016-7990
On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-201...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.1
Google Android 4.2.2
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 4.4.2
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4
Google Android 4.3
Google Android 5.1
Google Android 5.0.1
Google Android 4.4.1
Google Android 4.3.1
7.8
CVSSv2
CVE-2016-7991
On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores security information embedded in the OMACP messages resulting in remote unsolicited WAP Push SMS messages being accepted, parsed, and handled by the device, leading to unauthorized configuration changes, a...
Google Android 5.0.1
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 6.0.1
Google Android 6.0
Google Android 4.3
Google Android 4.2.2
Google Android 5.1.1
Google Android 5.1
Google Android 4.4.1
Google Android 4.3.1
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4.2
Google Android 4.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »