Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 4.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2015-9547
An issue exists on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of the log file if the error message is "Unhandled exception in Dalvik VM," "...
Google Android 4.3
Google Android 4.4.2
7.5
CVSSv3
CVE-2016-11046
An issue exists on Samsung mobile devices with JBP(4.3), KK(4.4), and L(5.0/5.1) software. Because of a misused whitelist, attackers can reach the radio layer (aka RIL or RILD) to place calls or send SMS messages. The Samsung ID is SVE-2016-5733 (May 2016).
Google Android 4.3
Google Android 4.4
Google Android 5.0
Google Android 5.1
NA
CVE-2014-3100
Stack-based buffer overflow in the encode_key function in /system/bin/keystore in the KeyStore service in Android 4.3 allows malicious users to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, v...
Google Android 4.3
1 Github repository
NA
CVE-2013-6271
Android 4.0 up to and including 4.3 allows malicious users to bypass intended access restrictions and remove device locks via a crafted application that invokes the updateUnlockMethodAndFinish method in the com.android.settings.ChooseLockGeneric class with the PASSWORD_QUALITY_UN...
Google Android 4.2.1
Google Android 4.0
Google Android 4.2
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.0.4
Google Android 4.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.0.1
Google Android 4.1.2
1 Article
NA
CVE-2014-1939
java/android/webkit/BrowserFrame.java in Android prior to 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows malicious users to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interf...
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1
Google Android 4.1.2
Google Android 4.0.4
Lenovo Shareit
1 Github repository
1 Article
NA
CVE-2013-7372
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache Harmony up to and including 6.0M3, as used in the Java Cryptography Architecture ...
Google Android 4.0
Apache Harmony
Google Android 4.3
Google Android 4.0.3
Google Android 4.0.1
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.2
Google Android 4.1.2
Google Android 4.1
Google Android
Google Android 4.0.4
Google Android 4.0.2
7.5
CVSSv3
CVE-2016-7988
On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.[Samsung].android.intent.action.SET_WIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a ...
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.2
Google Android 5.0.1
Google Android 6.0
Google Android 4.4.4
Google Android 4.4.2
Google Android 6.0.1
Google Android 5.1.1
Google Android 5.0
Google Android 4.4.3
9.8
CVSSv3
CVE-2016-7990
On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-201...
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.1
Google Android 4.2.2
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 4.4.2
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4
Google Android 4.3
Google Android 5.1
Google Android 5.0.1
Google Android 4.4.1
Google Android 4.3.1
7.5
CVSSv3
CVE-2016-7991
On Samsung Galaxy S4 through S7 devices, the "omacp" app ignores security information embedded in the OMACP messages resulting in remote unsolicited WAP Push SMS messages being accepted, parsed, and handled by the device, leading to unauthorized configuration changes, a...
Google Android 5.0.1
Google Android 5.0
Google Android 4.4.4
Google Android 4.4.3
Google Android 6.0.1
Google Android 6.0
Google Android 4.3
Google Android 4.2.2
Google Android 5.1.1
Google Android 5.1
Google Android 4.4.1
Google Android 4.3.1
Google Android 5.1.0
Google Android 5.0.2
Google Android 4.4.2
Google Android 4.4
5.5
CVSSv3
CVE-2016-3818
libc in Android 4.x prior to 4.4.4 allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.
Google Android 4.4.2
Google Android 4.4
Google Android 4.2
Google Android 4.1
Google Android 4.4.3
Google Android 4.4.1
Google Android 4.1.2
Google Android 4.0.4
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »