Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

android vulnerabilities and exploits

(subscribe to this query)

9.8
CVSSv3
CVE-2016-1155
HTTP header injection vulnerability in the URLConnection class in Android OS 2.2 through 6.0 allows remote attackers to execute arbitrary scripts or set arbitrary values in cookies....
Google Android 2.2Google Android 2.2.1Google Android 2.2.2Google Android 2.2.3Google Android 3.2.1Google Android 3.2.2Google Android 3.2.4Google Android 3.2.6Google Android 4.4.1Google Android 4.4.2Google Android 4.4.3Google Android 4.4.4Google Android 2.3.3Google Android 2.3.4Google Android 2.3.5Google Android 2.3.6Google Android 4.0.4Google Android 4.1Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 5.1.0Google Android 5.1.1Google Android 6.0Google Android 2.3Google Android 2.3.1Google Android 3.0Google Android 3.2Google Android 4.0Google Android 4.0.2Google Android 4.2.2Google Android 4.3.1Google Android 5.0.1Google Android 5.1Google Android 2.3.2Google Android 2.3.7Google Android 3.1Google Android 4.0.1Google Android 4.0.3Google Android 4.3Google Android 4.4Google Android 5.0Google Android 5.0.2
7.8
CVSSv3
CVE-2017-0766
A remote code execution vulnerability in the Android media framework (libjhead). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37776688....
Google Android 7.1.1Google Android 6.0.1Google Android 5.0.2Google Android 5.1.0Google Android 4.1.2Google Android 4.2.1Google Android 4.4.3Google Android 7.0Google Android 4.0.1Google Android 4.0.2Google Android 4.0.3Google Android 4.0.4Google Android 7.1.0Google Android 7.1.2Google Android 5.1Google Android 5.1.1Google Android 4.1Google Android 4.2Google Android 4.2.2Google Android 4.4.2Google Android 4.4.4Google Android 6.0Google Android 4.0Google Android 5.0Google Android 5.0.1Google Android 4.3Google Android 4.3.1Google Android 4.4Google Android 4.4.1
7.8
CVSSv3
CVE-2017-0756
A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34621073....
Google Android 5.1.0Google Android 5.1.1Google Android 4.0.1Google Android 4.0.2Google Android 4.4.4Google Android 7.0Google Android 7.1.1Google Android 5.0Google Android 5.0.2Google Android 4.0.4Google Android 4.1.2Google Android 4.4.1Google Android 4.4.3Google Android 7.1.2Google Android 6.0.1Google Android 6.0Google Android 4.0Google Android 4.2.1Google Android 4.2.2Google Android 4.3Google Android 4.3.1Google Android 7.1.0Google Android 5.0.1Google Android 5.1Google Android 4.0.3Google Android 4.1Google Android 4.2Google Android 4.4Google Android 4.4.2
7.8
CVSSv3
CVE-2017-0714
A remote code execution vulnerability in the Android media framework (h263 decoder). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36492637....
Google Android 7.1.0Google Android 7.1.2Google Android 5.1.0Google Android 4.0Google Android 4.2Google Android 4.2.2Google Android 6.0.1Google Android 5.0Google Android 5.0.1Google Android 5.0.2Google Android 4.3Google Android 4.3.1Google Android 4.4Google Android 4.4.1Google Android 4.4.2Google Android 4.4.4Google Android 7.0Google Android 4.0.1Google Android 4.0.2Google Android 4.0.3Google Android 4.0.4Google Android 4.1Google Android 7.1.1Google Android 6.0Google Android 5.1Google Android 5.1.1Google Android 4.1.2Google Android 4.2.1Google Android 4.4.3
7.5
CVSSv3
CVE-2017-0823
An information disclosure vulnerability in the Android system (rild). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37896655....
Google Android 6.0Google Android 6.0.1Google Android 5.0Google Android 5.0.1Google Android 4.2.1Google Android 4.2.2Google Android 4.3Google Android 4.3.1Google Android 4.0Google Android 4.0.1Google Android 4.0.2Google Android 4.0.3Google Android 7.1.0Google Android 7.1.2Google Android 5.1Google Android 5.1.1Google Android 4.0.4Google Android 4.1.2Google Android 4.4.1Google Android 4.4.3Google Android 7.1.1Google Android 7.0Google Android 5.0.2Google Android 5.1.0Google Android 4.1Google Android 4.2Google Android 4.4Google Android 4.4.2Google Android 4.4.4
7.8
CVSSv3
CVE-2017-0596
An elevation of privilege vulnerability in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated...
Google Android 5.1Google Android 5.1.0Google Android 5.1.1Google Android 4.0Google Android 4.4.2Google Android 4.4.3Google Android 4.4.4Google Android 7.0Google Android 7.1.0Google Android 7.1.1Google Android 6.0Google Android 4.1.2Google Android 4.2Google Android 4.2.1Google Android 4.2.2Google Android 5.0Google Android 5.0.2Google Android 4.0.1Google Android 4.0.3Google Android 4.1Google Android 4.3Google Android 4.4Google Android 7.1.2Google Android 6.0.1Google Android 5.0.1Google Android 4.0.2Google Android 4.0.4Google Android 4.3.1Google Android 4.4.1
7.8
CVSSv3
CVE-2017-0764
A remote code execution vulnerability in the Android media framework (libvorbis). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62872015....
Google Android 7.1.2Google Android 6.0Google Android 5.1.1Google Android 8.0Google Android 7.0Google Android 7.1.0Google Android 7.1.1Google Android 4.0.3Google Android 4.0.4Google Android 4.1Google Android 4.1.2Google Android 6.0.1Google Android 4.0Google Android 5.1.0Google Android 4.0.1Google Android 4.2.1Google Android 4.3Google Android 5.0Google Android 5.0.1Google Android 5.0.2Google Android 5.1Google Android 4.4Google Android 4.4.1Google Android 4.4.2Google Android 4.4.3Google Android 4.0.2Google Android 4.2Google Android 4.2.2Google Android 4.3.1Google Android 4.4.4
7.8
CVSSv3
CVE-2017-0768
A elevation of privilege vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62019992....
Google Android 5.1.0Google Android 5.1.1Google Android 4.0.1Google Android 4.0.2Google Android 4.4.4Google Android 7.1.2Google Android 6.0.1Google Android 6.0Google Android 4.0Google Android 4.2.1Google Android 4.2.2Google Android 7.0Google Android 7.1.1Google Android 5.0Google Android 5.0.2Google Android 4.0.4Google Android 4.1.2Google Android 4.4.1Google Android 4.4.3Google Android 8.0Google Android 7.1.0Google Android 5.0.1Google Android 5.1Google Android 4.0.3Google Android 4.1Google Android 4.2Google Android 4.4Google Android 4.4.2Google Android 4.3Google Android 4.3.1
NA
CVE-2011-3918
The Zygote process in Android 4.0.3 and earlier accepts fork requests from processes with arbitrary UIDs, which allows remote attackers to cause a denial of service (reboot loop) via a crafted application....
Google Android 3.1Google Android 3.2Google Android 2.1Google Android 2.3.6Google Android 2.3.5Google Android 2.2Google Android 2.3.7Google Android 1.0Google Android 4.0.1Google Android 4.0Google Android 3.2.4Google Android 2.2.1Google Android 2.3.2Google Android 2.3Google Android 2.3.4Google Android 1.5Google AndroidGoogle Android 4.0.2Google Android 3.2.6Google Android 3.0Google Android 2.3.1Google Android 2.0Google Android 2.3.3Google Android 2.0.1Google Android 3.2.2Google Android 3.2.1Google Android 2.2.2Google Android 2.2.3Google Android 1.6Google Android 1.1
NA
CVE-2013-4787
Android 1.6 Donut through 4.2 Jelly Bean does not properly check cryptographic signatures for applications, which allows attackers to execute arbitrary code via an application package file (APK) that is modified in a way that does not violate the cryptographic signature,...
Google Android 2.3.3Google Android 2.3.4Google Android 4.0Google Android 4.1.2Google Android 4.0.4Google Android 4.0.3Google Android 4.0.2Google Android 4.2Google Android 4.0.1Google Android 2.3Google Android 2.2.2Google Android 1.6Google Android 2.1Google Android 3.1Google Android 2.3.2Google Android 3.2.2Google Android 3.2.1Google Android 2.2.1Google Android 2.3.5Google Android 2.2Google Android 2.3.6Google Android 3.0Google Android 2.3.7Google Android 4.1Google Android 3.2.4Google Android 3.2Google Android 2.2.3Google Android 2.3.1Google Android 2.0Google Android 2.0.1Google Android 3.2.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-40449CVE-2021-35635CVE-2021-34743information disclosureSQLCVE-2021-35653CVE-2018-19052blind SQL injectionCVE-2021-35636
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook