Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-11046
An issue exists on Samsung mobile devices with JBP(4.3), KK(4.4), and L(5.0/5.1) software. Because of a misused whitelist, attackers can reach the radio layer (aka RIL or RILD) to place calls or send SMS messages. The Samsung ID is SVE-2016-5733 (May 2016).
Google Android 4.3
Google Android 4.4
Google Android 5.0
Google Android 5.1
7.5
CVSSv3
CVE-2016-11029
An issue exists on Samsung mobile devices with L(5.0/5.1), M(6.0), and N(7.0) software. Attackers can read the password of the Mobile Hotspot in the log because of an unprotected intent. The Samsung ID is SVE-2016-7301 (December 2016).
Google Android 5.0
Google Android 5.1
Google Android 6.0
Google Android 7.0
7.5
CVSSv3
CVE-2016-11039
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (AP + CP MDM9x35, or Qualcomm Onechip) software. There is a NULL pointer dereference issue in the IPC socket code. The Samsung ID is SVE-2016-5980 (July 2016).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.5
CVSSv3
CVE-2017-18685
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. The InputMethod application can cause a system crash via a malformed serializable object in an Intent. The Samsung ID is SVE-2016-7123 (February 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.5
CVSSv3
CVE-2016-11031
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. AntService allows a system_server crash and reboot. The Samsung ID is SVE-2016-7044 (November 2016).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.5
CVSSv3
CVE-2017-18664
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. There is a NULL pointer exception in PersonManager, causing memory corruption. The Samsung ID is SVE-2017-8286 (June 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.5
CVSSv3
CVE-2017-18670
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. android.intent.action.SIOP_LEVEL_CHANGED allows a serializable intent reboot. The Samsung ID is SVE-2017-8363 (May 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.8
CVSSv3
CVE-2015-6639
The Widevine QSEE TrustZone application in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows malicious users to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875.
Google Android 6.0.1
Google Android 6.0
Google Android 5.0
Google Android 5.1.1
1 EDB exploit
16 Github repositories
1 Article
7.8
CVSSv3
CVE-2015-6640
The prctl_set_vma_anon_name function in kernel/sys.c in Android prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 does not ensure that only one vma is accessed in a certain update action, which allows malicious users to gain privileges or cause a denial of service (vma list corru...
Google Android 5.0
Google Android 5.1.1
Google Android 4.4.4
Google Android 6.0
1 Github repository
9.8
CVSSv3
CVE-2015-6636
mediaserver in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 25070493 and 24686670.
Google Android 6.0.1
Google Android 5.1.1
Google Android 6.0
Google Android 5.0
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »