Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 8.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-25279
An issue exists on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. The baseband component has a buffer overflow via an abnormal SETUP message, leading to execution of arbitrary code. The Samsung ID is SVE-2020-18098 (September 2020).
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
1 Github repository
7.8
CVSSv3
CVE-2020-0001
In getProcessRecordLocked of ActivityManagerService.java isolated apps are not handled correctly. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
5 Github repositories
5.5
CVSSv3
CVE-2020-0004
In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Androi...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
2 Github repositories
6.5
CVSSv3
CVE-2020-0006
In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC server with no additional execution privileges needed. User interaction is needed f...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
2 Github repositories
5.5
CVSSv3
CVE-2020-0007
In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android ...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
4.7
CVSSv3
CVE-2020-0008
In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
5.5
CVSSv3
CVE-2020-0014
It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. This could lead to a local escalation of privilege with no additional execution privileges needed. User action is needed for exploitation.Product: AndroidVersions:...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
1 Github repository
7.8
CVSSv3
CVE-2020-0015
In onCreate of CertInstaller.java, there is a possible way to overlay the Certificate Installation dialog by a malicious application. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Produ...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
4.4
CVSSv3
CVE-2020-0017
In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: And...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
4.4
CVSSv3
CVE-2020-0018
In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. This could lead to local disclosure of user input with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »