Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google security research vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-9488
In the SELinux permissions of crash_dump.te, there is a permissions bypass due to a missing restriction. This could lead to a local escalation of privilege, with System privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0 Andr...
Google Android 8.1
Google Android 9.0
Google Android 8.0
1 EDB exploit
7.8
CVSSv3
CVE-2019-2023
In ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller. This could allow an app to add or replace a HAL service with its own service, gaining code execution in a privileged process.Product: AndroidVer...
Google Android 8.1
Google Android 8.0
Google Android 9.0
1 EDB exploit
7.8
CVSSv3
CVE-2017-0411
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which...
Google Android 7.1.0
Google Android 7.1.1
Google Android 7.0
1 EDB exploit
1 Github repository
7.8
CVSSv3
CVE-2017-0412
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which...
Google Android 7.1.1
Google Android 7.0
Google Android 7.1.0
1 EDB exploit
7.8
CVSSv3
CVE-2016-6707
An elevation of privilege vulnerability in System Server in Android 6.x prior to 2016-11-01 and 7.0 prior to 2016-11-01 could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be...
Google Android
Google Android 7.0
1 EDB exploit
8.8
CVSSv3
CVE-2021-30561
Type Confusion in V8 in Google Chrome before 91.0.4472.164 allowed a remote malicious user to potentially exploit heap corruption via a crafted HTML page.
Google Chrome
7.8
CVSSv3
CVE-2017-13236
In the KeyStore service, there is a permissions bypass that allows access to protected resources. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Andro...
Google Android 8.1
Google Android 8.0
1 EDB exploit
7.8
CVSSv3
CVE-2017-13209
In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. This could lead to a local elevation of privilege ...
Google Android 8.1
Google Android 8.0
1 EDB exploit
NA
CVE-2015-3864
Integer underflow in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in mediaserver in Android prior to 5.1.1 LMY48M allows remote malicious users to execute arbitrary code via crafted MPEG-4 data, aka internal bug 23034759. NOTE: this vulnerabilit...
Google Android
3 EDB exploits
4 Github repositories
3 Articles
8.8
CVSSv3
CVE-2015-8664
Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome prior to 47.0.2526.106 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensi...
Google Chrome
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »