Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adb vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2014-7952
The backup mechanism in the adb tool in Android might allow malicious users to inject additional applications (APKs) and execute arbitrary code by leveraging failure to filter application data streams.
Google Android -
1 Github repository
NA
CVE-2015-1188
The certificate verification functions in the HNDS service in Swisscom Centro Grande (ADB) DSL routers with firmware prior to 6.14.00 allows remote malicious users to access the management functions via unknown vectors.
Swisscom Centro Grande Firmware
4.9
CVSSv3
CVE-2024-21668
react-native-mmkv is a library that allows easy use of MMKV inside React Native applications. Before version 2.11.0, the react-native-mmkv logged the optional encryption key for the MMKV database into the Android system log. The key can be obtained by anyone with access to the An...
Mrousavy React-native-mmkv
6.8
CVSSv3
CVE-2023-3742
Insufficient policy enforcement in ADB in Google Chrome on ChromeOS before 114.0.5735.90 allowed a local malicious user to bypass device policy restrictions via physical access to the device. (Chromium security severity: High)
Google Chrome
NA
CVE-2024-2414
The primary channel is unprotected on Movistar 4G router affecting E version S_WLD71-T1_v2.0.201820. This device has the 'adb' service open on port 5555 and provides access to a shell with root privileges.
7.8
CVSSv3
CVE-2018-11906
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, there is a security concern with default privileged access to ADB and debug-fs.
Google Android -
9.8
CVSSv3
CVE-2023-33745
TeleAdapt RoomCast TA-2400 1.0 up to and including 3.1 is vulnerable to Improper Privilege Management: from the shell available after an adb connection, simply entering the su command provides root access (without requiring a password).
Teleadapt Roomcast Ta-2400 Firmware
4.6
CVSSv3
CVE-2020-36248
The ownCloud application prior to 2.15 for Android allows malicious users to use adb to include a PIN preferences value in a backup archive, and consequently bypass the PIN lock feature by restoring from this archive.
Owncloud Owncloud
7.8
CVSSv3
CVE-2020-27402
The HK1 Box S905X3 TV Box contains a vulnerability that allows a local unprivileged user to escalate to root using the /system/xbin/su binary via a serial port (UART) connection or using adb.
Hindotech Hk1 Box S905x3 Firmware Hk1 X3 S905x3 4bit V11 2019-11-05
8.8
CVSSv3
CVE-2017-18665
An issue exists on Samsung mobile devices with M(6.0) software. There is a NULL pointer exception in WifiService via adb-cmd, causing memory corruption. The Samsung ID is SVE-2017-8287 (June 2017).
Google Android 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »