Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2024-20818
Out-of-bounds Write vulnerabilities in svc1td_vld_elh of libsthmbc.so prior to SMR Feb-2024 Release 1 allows local malicious users to trigger buffer overflow.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
Samsung Android 14.0
7.8
CVSSv3
CVE-2024-20819
Out-of-bounds Write vulnerabilities in svc1td_vld_plh_ap of libsthmbc.so prior to SMR Feb-2024 Release 1 allows local malicious users to trigger buffer overflow.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
Samsung Android 14.0
7.1
CVSSv3
CVE-2024-20820
Improper input validation in bootloader prior to SMR Feb-2024 Release 1 allows local privileged malicious users to cause an Out-Of-Bounds read.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
6.5
CVSSv3
CVE-2024-20816
Improper authentication vulnerability in onCharacteristicWriteRequest in Auto Hotspot prior to SMR Feb-2024 Release 1 allows adjacent attackers connect to victim's mobile hotspot without user awareness.
Samsung Android 11.0
Samsung Android 12.0
Samsung Android 13.0
Samsung Android 14.0
7.8
CVSSv3
CVE-2023-47889
The Android application BINHDRM26 com.bdrm.superreboot 1.0.3, exposes several critical actions through its exported broadcast receivers. These exposed actions can allow any app on the device to send unauthorized broadcasts, leading to unintended consequences. The vulnerability is...
Binhdrm26 Super Reboot 1.0.3
7.5
CVSSv3
CVE-2023-47355
The com.eypcnnapps.quickreboot (aka Eyuep Can Yilmaz {ROOT] Quick Reboot) application 1.0.8 for Android has exposed broadcast receivers for PowerOff, Reboot, and Recovery (e.g., com.eypcnnapps.quickreboot.widget.PowerOff) that are susceptible to unauthorized broadcasts because of...
Eyuepcanyilmaz Root Quick Reboot 1.0.8
6.7
CVSSv3
CVE-2024-20001
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961601; Issue ID: DTV03961601.
Google Android 11.0
Google Android 12.0
Google Android 13.0
Google Android 14.0
6.7
CVSSv3
CVE-2024-20002
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961715; Issue ID: DTV03961715.
Google Android 11.0
Google Android 12.0
Google Android 13.0
Google Android 14.0
6.7
CVSSv3
CVE-2024-20006
In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08477148; Issue ID: ALPS08477148.
Rdkcentral Rdk-b 2022q3
Google Android 11.0
Openwrt Openwrt 19.07.0
Openwrt Openwrt 21.02.0
7.5
CVSSv3
CVE-2024-20007
In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441369; Issue ID: ALPS08441369.
Google Android 12.0
Google Android 13.0
Google Android 14.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »