Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 8.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-0070
In rw_t2t_update_lock_attributes of rw_t2t_ndef.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: An...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
9.8
CVSSv3
CVE-2020-0071
In rw_t2t_extract_default_locks_info of rw_t2t_ndef.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
9.8
CVSSv3
CVE-2020-0072
In rw_t2t_handle_tlv_detect_rsp of rw_t2t_ndef.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
9.8
CVSSv3
CVE-2020-0073
In rw_t2t_handle_tlv_detect_rsp of rw_t2t_ndef.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: And...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
7.8
CVSSv3
CVE-2020-0098
In navigateUpToLocked of ActivityStack.java, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: ...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
1 Article
7.8
CVSSv3
CVE-2020-0099
In addWindow of WindowManagerService.java, there is a possible window overlay attack due to an insecure default value. This could lead to local escalation of privilege via tapjacking with no additional execution privileges needed. User interaction is needed for exploitation.Produ...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
7.8
CVSSv3
CVE-2020-0102
In GattServer::SendResponse of gatt_server.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
1 Article
7.8
CVSSv3
CVE-2020-0115
In verifyIntentFiltersIfNeeded of PackageManagerService.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not n...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
9.8
CVSSv3
CVE-2020-0117
In aes_cmac of aes_cmac.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the bluetooth server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
6.7
CVSSv3
CVE-2020-0122
In the permission declaration for com.google.android.providers.gsf.permission.WRITE_GSERVICES in AndroidManifest.xml, there is a possible permissions bypass. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed f...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »