Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adb vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-7633
Code injection in the /ui/login form Language parameter in Epicentro E_7.3.2+ allows malicious users to execute JavaScript code by making a user issue a manipulated POST request.
Adbglobal Epicentro 7.3.2
NA
CVE-2012-5564
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log.
Google Android Debug Bridge -
6.8
CVSSv3
CVE-2019-1010221
LineageOS 16.0 and previous versions is affected by: Incorrect Access Control. The impact is: The property checked by `adb root` can also be set in a normal adb shell session. The component is: adb shell (patches to fix this are at https://review.lineageos.org/c/LineageOS/android...
Lineageos Lineageos
NA
CVE-2014-1909
Integer signedness error in system/core/adb/adb_client.c in Android Debug Bridge (ADB) for Android 4.4 in the Android SDK Platform Tools 18.0.1 allows ADB servers to execute arbitrary code via a negative length value, which bypasses a signed comparison and triggers a stack-based ...
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Google Android Sdk Platform Tools 18.0.1
Google Android Debug Bridge -
5.5
CVSSv3
CVE-2020-11836
OPPO Android Phone with MTK chipset and Android 8.1/9/10/11 versions have an information leak vulnerability. The “adb shell getprop ro.vendor.aee.enforcing” or “adb shell getprop ro.vendor.aee.enforcing” return no.
Google Android 8.1
Google Android 9.0
Google Android 10.0
Google Android 11.0
NA
CVE-2024-27350
Amazon Fire OS 7 prior to 7.6.6.9 and 8 prior to 8.1.0.3 allows Fire TV applications to establish local ADB (Android Debug Bridge) connections. NOTE: some third parties dispute whether this has security relevance, because an ADB connection is only possible after the (non-default)...
7.8
CVSSv3
CVE-2016-3861
LibUtils in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, 6.x prior to 2016-09-01, and 7.0 prior to 2016-09-01 mishandles conversions between Unicode character encodings with different encoding widths, which allows remote malicious users to execute arbit...
Google Android 7.0
Google Android 4.1.2
Google Android 4.2
Google Android 4.4.2
Google Android 4.4.3
Google Android 5.0
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.3
Google Android 4.3.1
Google Android 6.0
Google Android 6.0.1
Google Android 4.0.4
Google Android 4.1
Google Android 4.4
Google Android 4.4.1
Google Android 5.1.0
Google Android 4.0
Google Android 4.0.1
Google Android 4.2.1
Google Android 4.2.2
Google Android 5.0.1
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2019-13405
A broken access control vulnerability found in Advan VD-1 firmware version 230 leads to insecure ADB service. An attacker can send a POST request to cgibin/AdbSetting.cgi to enable ADB without any authentication then take the compromised device as a relay or to install mining sof...
Androvideo Vd 1 Firmware 230
6.8
CVSSv3
CVE-2018-14998
The Leagoo P1 Android device with a build fingerprint of sp7731c_1h10_32v4_bird:6.0/MRA58K/android.20170629.214736:user/release-keys contains a hidden root privilege escalation capability to achieve command execution as the root user. They have made modifications that allow a use...
Leagoo P1 Firmware -
9.8
CVSSv3
CVE-2019-16272
On DTEN D5 and D7 prior to 1.3.4 devices, factory settings allows for firmware reflash and Android Debug Bridge (adb) enablement.
Dten D5 Firmware
Dten D7 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »