Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android sdk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-42443
An undisclosed issue in Trusteer iOS SDK for mobile versions before 5.7 and Trusteer Android SDK for mobile versions before 5.7 may allow uploading of files. IBM X-Force ID: 238535.
7.5
CVSSv3
CVE-2021-38786
There is a NULL pointer dereference in media/libcedarc/vdecoder of Allwinner R818 SoC Android Q SDK V1.0, which could cause a media crash (denial of service).
Allwinnertech Android Q Sdk 1.0
5.3
CVSSv3
CVE-2022-39246
matrix-android-sdk2 is the Matrix SDK for Android. Prior to version 1.5.1, an attacker cooperating with a malicious homeserver can construct messages appearing to have come from another person. Such messages will be marked with a grey shield on some platforms, but this may be mis...
Matrix Software Development Kit
1 Article
7.5
CVSSv3
CVE-2021-38784
There is a NULL pointer dereference in the syscall open_exec function of Allwinner R818 SoC Android Q SDK V1.0 that could executable a malicious file to cause a system crash.
Allwinnertech Android Q Sdk 1.0
5.3
CVSSv3
CVE-2023-40040
An issue exists in the MyCrops HiGrade "THC Testing & Cannabi" application 1.0.337 for Android. A remote attacker can start the camera feed via the com.cordovaplugincamerapreview.CameraActivity component in some situations. NOTE: this is only exploitable on Android ...
Mycrops Higrade 1.0.337
7.5
CVSSv3
CVE-2021-38785
There is a NULL pointer deference in the Allwinner R818 SoC Android Q SDK V1.0 camera driver /dev/cedar_dev that could use the ioctl cmd IOCTL_GET_IOMMU_ADDR to cause a system crash.
Allwinnertech Android Q Sdk 1.0
7.5
CVSSv3
CVE-2021-38789
Allwinner R818 SoC Android Q SDK V1.0 is affected by an incorrect access control vulnerability that does not check the caller's permission, in which a third-party app could change system settings.
Allwinnertech Android Q Sdk 1.0
9.8
CVSSv3
CVE-2015-2020
The MyScript SDK prior to 1.3 for Android might allow malicious users to execute arbitrary code by leveraging a finalize method in a Serializable class that improperly passes an attacker-controlled pointer to a native function.
Myscript Myscript
6.5
CVSSv3
CVE-2022-25635
Realtek Linux/Android Bluetooth Mesh SDK has a buffer overflow vulnerability due to insufficient validation for broadcast network packet length. An unauthenticated attacker in the adjacent network can exploit this vulnerability to disrupt service.
Realtek Bluetooth Mesh Software Development Kit
7.5
CVSSv3
CVE-2021-38783
There is a Out-of-Bound Write in the Allwinner R818 SoC Android Q SDK V1.0 camera driver "/dev/cedar_dev" through iotcl cmd IOCTL_SET_PROC_INFO and IOCTL_COPY_PROC_INFO, which could cause a system crash or EoP.
Allwinnertech Android Q Sdk 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »