Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 4.0 vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv3
CVE-2023-20835
In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341261; Issue ID: ALPS07326570.
Linuxfoundation Yocto 4.0
Mediatek Iot Yocto 23.0
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2023-32811
In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: AL...
Linuxfoundation Yocto 4.0
Mediatek Iot Yocto 23.0
Google Android 12.0
Google Android 13.0
6.4
CVSSv3
CVE-2023-20623
In ion, there is a possible escalation of privilege due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559778; Issue ID: ALPS07559778.
Google Android 10.0
Google Android 11.0
Google Android 12.0
Yoctoproject Yocto 3.1
Yoctoproject Yocto 3.3
Yoctoproject Yocto 4.0
7.8
CVSSv3
CVE-2016-2485
libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 does not validate OMX buffer sizes for the GSM and G711 codecs, which allows malicious users to gain privileges via a crafted application, as demon...
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 6.0.1
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 5.1
Google Android 5.0
Google Android 4.2
Google Android 4.1.1
Google Android 4.0.4
Google Android 6.0
Google Android 5.0.1
Google Android 4.1.2
Google Android 4.1
7.8
CVSSv3
CVE-2016-2464
libvpx in libwebm in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted mkv file, aka internal bu...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
Google Android 4.0
Google Android 4.2
Google Android 4.1.2
Google Android 4.1.1
Google Android 4.1
Google Android 4.3
Google Android 4.2.1
Google Android 4.0.4
Google Android 4.0.2
Google Android 4.3.1
Google Android 4.2.2
Google Android 4.0.3
Google Android 4.0.1
7.8
CVSSv3
CVE-2016-2477
mm-video-v4l2/vidc/vdec/src/omx_vdec_msm8974.cpp in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 mishandles pointers, which allows malicious users to gain privileges via a crafted application, as demonstrated b...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 5.0
Google Android 4.3
Google Android 4.1.1
Google Android 4.0.4
Google Android 5.0.1
Google Android 4.3.1
Google Android 4.1
Google Android 4.0.3
7.8
CVSSv3
CVE-2016-2478
mm-video-v4l2/vidc/vdec/src/omx_vdec_msm8974.cpp in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 mishandles pointers, which allows malicious users to gain privileges via a crafted application, as demonstrated b...
Google Android 4.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 4.0.2
Google Android 5.0
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 6.0.1
Google Android 5.1
Google Android 4.2
Google Android 4.1.1
Google Android 4.0.1
Google Android 6.0
Google Android 5.0.1
Google Android 4.2.1
Google Android 4.1.2
Google Android 4.0
7.8
CVSSv3
CVE-2016-2480
The mm-video-v4l2 vidc component in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 does not validate certain OMX parameter data structures, which allows malicious users to gain privileges via a crafted applicatio...
Google Android 6.0.1
Google Android 6.0
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 5.0.1
Google Android 4.3.1
Google Android 4.1.2
Google Android 4.1
Google Android 5.1
Google Android 5.0
Google Android 4.1.1
Google Android 4.0.4
7.8
CVSSv3
CVE-2016-2482
The mm-video-v4l2 vdec component in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 mishandles a buffer count, which allows malicious users to gain privileges via a crafted application, as demonstrated by obtainin...
Google Android 6.0.1
Google Android 6.0
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 5.1
Google Android 5.0
Google Android 4.3
Google Android 4.1.1
Google Android 4.0.4
Google Android 5.0.1
Google Android 4.3.1
Google Android 4.1
Google Android 4.0.3
7.8
CVSSv3
CVE-2016-2487
libstagefright in mediaserver in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 allows malicious users to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka intern...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1
Google Android 5.0.1
Google Android 4.0
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 4.1.1
Google Android 5.0
Google Android 4.3
Google Android 4.0.4
Google Android 4.0.2
Google Android 4.3.1
Google Android 4.2.2
Google Android 4.1
Google Android 4.0.3
Google Android 4.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »