Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 9.0 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2019-1994
In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings accessible due to an insecure default value. This could lead to unwanted access to development settings, with no additional execution privileges needed. User interaction is needed for ex...
Google Android 9.0
Google Android 8.0
Google Android 8.1
1 Article
4.3
CVSSv2
CVE-2022-22270
An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information.
Google Android 9.0
Google Android 10.0
Google Android 11.0
2.1
CVSSv2
CVE-2022-22271
A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1 allows malicious users to copy data from arbitrary memory.
Google Android 9.0
Google Android 10.0
Google Android 11.0
4.6
CVSSv2
CVE-2021-0692
In sendBroadcastToInstaller of FirstScreenBroadcast.java, there is a possible activity launch due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: ...
Google Android 9.0
Google Android 10.0
Google Android 11.0
4.9
CVSSv2
CVE-2021-0704
In createNoCredentialsPermissionNotification and related functions of AccountManagerService.java, there is a possible way to retrieve accounts from the device without permissions due to a permissions bypass. This could lead to local information disclosure with no additional execu...
Google Android 9.0
Google Android 10.0
Google Android 11.0
1.9
CVSSv2
CVE-2021-0919
In getService of IServiceManager.cpp, there is a possible unhandled exception due to an integer overflow. This could lead to local denial of service making the lockscreen unusable with no additional execution privileges needed. User interaction is needed for exploitation.Product:...
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.2
CVSSv2
CVE-2021-0928
In createFromParcel of OutputConfiguration.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
Google Android 9.0
Google Android 10.0
Google Android 11.0
1 Github repository
2.1
CVSSv2
CVE-2019-2104
In HIDL, safe_union, and other C++ structs/unions being sent to application processes, there are uninitialized fields. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...
Google Android 8.1
Google Android 8.0
Google Android 9.0
1 Article
4.4
CVSSv2
CVE-2019-2114
In the default privileges of NFC, there is a possible local bypass of user interaction requirements on package installation due to a default permission. This could lead to local escalation of privilege by installing an application with no additional execution privileges needed. U...
Google Android 8.1
Google Android 8.0
Google Android 9.0
2 Github repositories
2.1
CVSSv2
CVE-2019-2118
In various functions of Parcel.cpp, there are uninitialized or partially initialized stack variables. These could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Andr...
Google Android 8.1
Google Android 8.0
Google Android 9.0
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »