Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2024-20009
In alac decoder, there is a possible out of bounds write due to an incorrect error handling. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441150; Issue ID: ALPS084411...
Google Android 12.0
Google Android 13.0
Google Android 14.0
6.7
CVSSv3
CVE-2024-20010
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560.
Google Android 11.0
Google Android 12.0
Google Android 13.0
9.8
CVSSv3
CVE-2024-20011
In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441146; Issue ID: ALPS08441146.
Google Android 11.0
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2024-20012
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566.
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608.
Google Android 11.0
Google Android 12.0
Google Android 13.0
Google Android 14.0
7.8
CVSSv3
CVE-2024-20015
In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441419; Issue ID: ALPS08441419.
Google Android 12.0
Google Android 13.0
Google Android 14.0
4.4
CVSSv3
CVE-2024-20016
In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation Patch ID: ALPS07835901; Issue ID: ALPS07835901.
Google Android 11.0
Google Android 12.0
Google Android 13.0
Google Android 14.0
6.1
CVSSv3
CVE-2024-23388
Improper authorization in handler for custom URL scheme issue in "Mercari" App for Android prior to version 5.78.0 allows a remote malicious user to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishin...
Mercari Mercari
5.3
CVSSv3
CVE-2024-21387
Microsoft Edge for Android Spoofing Vulnerability
Microsoft Edge Chromium
4.3
CVSSv3
CVE-2024-21382
Microsoft Edge for Android Information Disclosure Vulnerability
Microsoft Edge Chromium
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »