Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2024-20016
In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation Patch ID: ALPS07835901; Issue ID: ALPS07835901.
Google Android 11.0
Google Android 12.0
Google Android 13.0
Google Android 14.0
6.1
CVSSv3
CVE-2024-23388
Improper authorization in handler for custom URL scheme issue in "Mercari" App for Android prior to version 5.78.0 allows a remote malicious user to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishin...
Mercari Mercari
4.3
CVSSv3
CVE-2024-21382
Microsoft Edge for Android Information Disclosure Vulnerability
Microsoft Edge Chromium
5.3
CVSSv3
CVE-2024-21387
Microsoft Edge for Android Spoofing Vulnerability
Microsoft Edge Chromium
5.9
CVSSv3
CVE-2023-33757
A lack of SSL certificate validation in Splicecom iPCS (iOS App) v1.3.4, iPCS2 (iOS App) v2.8 and before, and iPCS (Android App) v1.8.5 and before allows malicious users to eavesdrop on communications via a man-in-the-middle attack.
Splicecom Ipcs
Splicecom Ipcs2
Splicecom Ipcs 1.3.4
1 Github repository
5.5
CVSSv3
CVE-2024-23453
Android Spoon application version 7.11.1 to 8.6.0 uses hard-coded credentials, which may allow a local malicious user to retrieve the hard-coded API key when the application binary is reverse-engineered. This API key may be used for unexpected access of the associated service.
Spooncast Spoon
4.3
CVSSv3
CVE-2023-46447
The POPS! Rebel application 5.0 for Android, in POPS! Rebel Bluetooth Glucose Monitoring System, sends unencrypted glucose measurements over BLE.
Popsdiabetes Rebel 5.0
5.5
CVSSv3
CVE-2023-48351
In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2023-48352
In phasecheckserver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed
Google Android 11.0
Google Android 12.0
Google Android 13.0
4.4
CVSSv3
CVE-2023-48353
In vsp driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed
Google Android 11.0
Google Android 12.0
Google Android 13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
8
9
10
NEXT »