Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android api vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-11074
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is an obsolete set/reset ssid hotlist API.
Google Android -
NA
CVE-2009-3698
An unspecified function in the Dalvik API in Android 1.5 and previous versions allows remote malicious users to cause a denial of service (system process restart) via a crafted application, possibly a related issue to CVE-2009-2656.
Google Android
NA
CVE-2015-6606
The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin in Android prior to 5.1.1 LMY48T allows malicious users to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786.
Google Android
1 Github repository
3.3
CVSSv3
CVE-2023-30683
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local malicious users to call endCall API without permission.
Samsung Android 13.0
3.3
CVSSv3
CVE-2023-30682
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local malicious users to call silenceRinger API without permission.
Samsung Android 13.0
6.7
CVSSv3
CVE-2023-21370
In the Security Element API, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
Google Android
3.3
CVSSv3
CVE-2023-30684
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local malicious users to call acceptRingingCall API without permission.
Samsung Android 13.0
7.8
CVSSv3
CVE-2018-6241
NVIDIA Tegra Gralloc module contains a vulnerability in driver in which it does not validate input parameter of the registerbuffer API, which may lead to arbitrary code execution, denial of service, or escalation of privileges. Android ID: A-62540032 Severity Rating: High Version...
Google Android -
9.8
CVSSv3
CVE-2023-21494
Potential buffer overflow vulnerability in auth api in mm_Authentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote malicious users to cause invalid memory access.
Samsung Android 13.0
7.8
CVSSv3
CVE-2018-11852
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper check In the WMA API for the inputs received from the firmware and then fills the same to the host structure will lead to OOB write.
Google Android -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »