Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 8.1 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-2225
When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to remote escalation of privilege with no additional execution privileges needed. Us...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
7.5
CVSSv3
CVE-2019-2232
In handleRun of TextLine.java, there is a possible application crash due to improper input validation. This could lead to remote denial of service when processing Unicode with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andr...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
8.8
CVSSv3
CVE-2021-0325
In ih264d_parse_pslice of ih264d_parse_pslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: A...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0329
In several native functions called by AdvertiseManager.java, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the Bluetooth server with User execution privileges needed. User interaction is not needed for e...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0391
In onCreate() of ChooseTypeAndAccountActivity.java, there is a possible way to learn the existence of an account, without permissions, due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is n...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
9.8
CVSSv3
CVE-2021-0474
In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 A...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0481
In onActivityResult of EditUserPhotoController.java, there is a possible access of unauthorized files due to an unexpected URI handler. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Pro...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
5.5
CVSSv3
CVE-2021-0484
In readVector of IMediaPlayer.cpp, there is a possible read of uninitialized heap data due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
8.8
CVSSv3
CVE-2021-0507
In handle_rc_metamsg_cmd of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidV...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7
CVSSv3
CVE-2021-0509
In various functions of CryptoPlugin.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »