Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 9.0 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-25511
An improper validation vulnerability in FilterProvider prior to SMR Dec-2021 Release 1 allows malicious users to write arbitrary files via a path traversal vulnerability.
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-25512
An improper validation vulnerability in telephony prior to SMR Dec-2021 Release 1 allows malicious users to launch certain activities.
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2019-2023
In ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller. This could allow an app to add or replace a HAL service with its own service, gaining code execution in a privileged process.Product: AndroidVer...
Google Android 8.1
Google Android 8.0
Google Android 9.0
1 EDB exploit
5.5
CVSSv3
CVE-2019-2104
In HIDL, safe_union, and other C++ structs/unions being sent to application processes, there are uninitialized fields. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...
Google Android 8.1
Google Android 8.0
Google Android 9.0
1 Article
5.5
CVSSv3
CVE-2019-2118
In various functions of Parcel.cpp, there are uninitialized or partially initialized stack variables. These could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Andr...
Google Android 8.1
Google Android 8.0
Google Android 9.0
1 Article
7.8
CVSSv3
CVE-2021-0302
In PackageInstaller, there is a possible tapjacking attack due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Andr...
Google Android 8.1
Google Android 9.0
Google Android 10.0
7.8
CVSSv3
CVE-2021-0305
In PackageInstaller, there is a possible tapjacking attack due to an insecure default value. This could lead to local escalation of privilege and permissions with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Andr...
Google Android 8.1
Google Android 9.0
Google Android 10.0
6.7
CVSSv3
CVE-2021-0349
In display driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-9, Android-10, Android-...
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2021-0472
In shouldLockKeyguard of LockTaskController.java, there is a possible way to exit App Pinning without a PIN due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...
Google Android 9.0
Google Android 10.0
Google Android 11.0
6.7
CVSSv3
CVE-2021-0661
In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05844413; Issue ID: ALPS05844413.
Google Android 9.0
Google Android 10.0
Google Android 11.0
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »