Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-23388
Improper authorization in handler for custom URL scheme issue in "Mercari" App for Android prior to version 5.78.0 allows a remote malicious user to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishin...
Mercari Mercari
NA
CVE-2024-21382
Microsoft Edge for Android Information Disclosure Vulnerability
Microsoft Edge Chromium
NA
CVE-2024-21387
Microsoft Edge for Android Spoofing Vulnerability
Microsoft Edge Chromium
NA
CVE-2023-33757
A lack of SSL certificate validation in Splicecom iPCS (iOS App) v1.3.4, iPCS2 (iOS App) v2.8 and before, and iPCS (Android App) v1.8.5 and before allows malicious users to eavesdrop on communications via a man-in-the-middle attack.
Splicecom Ipcs
Splicecom Ipcs2
Splicecom Ipcs 1.3.4
1 Github repository
NA
CVE-2024-23453
Android Spoon application version 7.11.1 to 8.6.0 uses hard-coded credentials, which may allow a local malicious user to retrieve the hard-coded API key when the application binary is reverse-engineered. This API key may be used for unexpected access of the associated service.
Spooncast Spoon
NA
CVE-2023-46447
The POPS! Rebel application 5.0 for Android, in POPS! Rebel Bluetooth Glucose Monitoring System, sends unencrypted glucose measurements over BLE.
Popsdiabetes Rebel 5.0
NA
CVE-2023-48339
In jpg driver, there is a possible missing permission check. This could lead to local information disclosure with System execution privileges needed
Google Android 11.0
Google Android 12.0
Google Android 13.0
NA
CVE-2023-48340
In video decoder, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with no additional execution privileges needed
Google Android 11.0
Google Android 12.0
NA
CVE-2023-48341
In video decoder, there is a possible out of bounds read due to improper input validation. This could lead to local denial of service with no additional execution privileges needed
Google Android 11.0
Google Android 12.0
NA
CVE-2023-48342
In media service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
Google Android 11.0
Google Android 12.0
Google Android 13.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »