Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-27350
Amazon Fire OS 7 prior to 7.6.6.9 and 8 prior to 8.1.0.3 allows Fire TV applications to establish local ADB (Android Debug Bridge) connections. NOTE: some third parties dispute whether this has security relevance, because an ADB connection is only possible after the (non-default)...
NA
CVE-2022-42443
An undisclosed issue in Trusteer iOS SDK for mobile versions before 5.7 and Trusteer Android SDK for mobile versions before 5.7 may allow uploading of files. IBM X-Force ID: 238535.
NA
CVE-2024-25466
Directory Traversal vulnerability in React Native Document Picker before v.9.1.1 and fixed in v.9.1.1 allows a local malicious user to execute arbitrary code via a crafted script to the Android library component.
1 Github repository
NA
CVE-2024-0390
INPRAX "iZZi connect" application on Android contains hard-coded MQTT queue credentials. The same MQTT queue is used by corresponding physical recuperation devices. Exploiting this vulnerability could potentially allow unauthorized access to manage and read parameters o...
5
CVSSv3
CVE-2024-21374
Microsoft Teams for Android Information Disclosure Vulnerability
Microsoft Teams
8.8
CVSSv3
CVE-2023-6724
Authorization Bypass Through User-Controlled Key vulnerability in Software Engineering Consultancy Machine Equipment Limited Company Hearing Tracking System allows Authentication Abuse.This issue affects Hearing Tracking System: before for IOS 7.0, for Android Latest release 1.0....
Simgesel Hearing Tracking System
7.8
CVSSv3
CVE-2024-22012
there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Google Android -
7.5
CVSSv3
CVE-2024-23304
Cybozu KUNAI for Android 3.0.20 to 3.0.21 allows a remote unauthenticated malicious user to cause a denial-of-service (DoS) condition by performing certain operations.
Cybozu Kunai 3.0.20
Cybozu Kunai 3.0.21
3.3
CVSSv3
CVE-2024-20810
Implicit intent hijacking vulnerability in Smart Suggestions prior to SMR Feb-2024 Release 1 allows local malicious users to get sensitive information.
Samsung Android 12.0
Samsung Android 13.0
3.3
CVSSv3
CVE-2024-20811
Improper caller verification in GameOptimizer prior to SMR Feb-2024 Release 1 allows local malicious users to configure GameOptimizer.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
Samsung Android 14.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »