Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 8.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-12746
An issue exists on Samsung mobile devices with O(8.X), P(9.0), and Q(10.0) (Exynos chipsets) software. Attackers can bypass the Secure Bootloader protection mechanism via a heap-based buffer overflow to execute arbitrary code. The Samsung ID is SVE-2020-16712 (May 2020).
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
7.8
CVSSv3
CVE-2020-12751
An issue exists on Samsung mobile devices with O(8.X), P(9.0), and Q(10.0) software. The Quram image codec library allows malicious users to overwrite memory and execute arbitrary code via crafted JPEG data that is mishandled during decoding. The Samsung ID is SVE-2020-16943 (May...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
4.4
CVSSv3
CVE-2021-0676
In geniezone driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05863009; Issue ID: ALPS05863009.
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0683
In runTraceIpcStop of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0684
In TouchInputMapper::sync of TouchInputMapper.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVer...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
5
CVSSv3
CVE-2021-0687
In ellipsize of Layout.java, there is a possible ANR due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 ...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7
CVSSv3
CVE-2021-0688
In lockNow of PhoneWindowManager.java, there is a possible lock screen bypass due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Andr...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
6.5
CVSSv3
CVE-2021-0690
In ih264d_mark_err_slice_skip of ih264d_parse_pslice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: And...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0708
In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
8.1
CVSSv3
CVE-2021-0870
In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Andro...
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »