Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 4.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-20804
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07199773; Issue ID: ALPS07326384.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
NA
CVE-2023-20805
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07199773; Issue ID: ALPS07326411.
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
8.8
CVSSv2
CVE-2013-6271
Android 4.0 up to and including 4.3 allows malicious users to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UN...
Google Android 4.2.1
Google Android 4.0
Google Android 4.2
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.1
Google Android 4.1.2
1 Article
5
CVSSv2
CVE-2013-7372
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache Harmony up to and including 6.0M3, as used in the Java Cryptography Architecture ...
Google Android 4.0
Apache Harmony
Google Android 4.3
Google Android 4.0.3
Google Android 4.0.1
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 4.1
Google Android
Google Android 4.0.4
Google Android 4.0.2
7.5
CVSSv2
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android prior to 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows malicious users to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interf...
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1
Google Android 4.1.2
Google Android 4.0.4
Lenovo Shareit
1 Github repository
1 Article
9.3
CVSSv2
CVE-2013-4710
Android 3.0 up to and including 4.1.x on Disney Mobile, eAccess, KDDI, NTT DOCOMO, SoftBank, and other devices does not properly implement the WebView class, which allows remote malicious users to execute arbitrary methods of Java objects or cause a denial of service (reboot) via...
Google Android 4.0
Google Android 3.2.6
Google Android 3.2.4
Google Android 3.2.2
Google Android 4.0.4
Google Android 4.0.2
Google Android 3.2
Google Android 3.0
Google Android 4.1.2
Google Android 4.1
Google Android 4.0.3
Google Android 4.0.1
Google Android 3.2.1
Google Android 3.1
2 EDB exploits
2 Github repositories
1 Article
5
CVSSv2
CVE-2016-3753
mediaserver in Android 4.x prior to 4.4.4 allows remote malicious users to obtain sensitive information via unspecified vectors, aka internal bug 27210135.
Google Android 4.4.3
Google Android 4.2.1
Google Android 4.1.2
Google Android 4.0.1
Google Android 4.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 4.4.2
Google Android 4.2.2
Google Android 4.2
Google Android 4.0
7.1
CVSSv2
CVE-2016-3818
libc in Android 4.x prior to 4.4.4 allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.
Google Android 4.4.2
Google Android 4.4
Google Android 4.2
Google Android 4.1
Google Android 4.4.3
Google Android 4.4.1
Google Android 4.1.2
Google Android 4.0.4
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
7.2
CVSSv2
CVE-2014-8609
The addAccount method in src/com/android/settings/accounts/AddAccountSettings.java in the Settings application in Android prior to 5.0.0 does not properly create a PendingIntent, which allows malicious users to use the SYSTEM uid for broadcasting an intent with arbitrary componen...
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3.1
Google Android
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.0.1
Google Android 4.0.3
Google Android 4.2.1
Google Android 4.3
4 Github repositories
7.1
CVSSv2
CVE-2016-6767
A denial of service vulnerability in Mediaserver could enable an malicious user to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4. Android ID: A-31833...
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3.1
Google Android 4.4.4
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »