Google Android vulnerabilities

9,646 known vulnerabilities affecting google/android.

Total CVEs

9,646

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL883HIGH5184MEDIUM3317LOW260UNKNOWN2

Vulnerabilities

Page 203 of 483

CVE-2022-26095CRITICALCVSS 9.8v10.0v11.0+1 more2022-04-11

CVE-2022-26095 [CRITICAL] CWE-476 CVE-2022-26095: Null pointer dereference vulnerability in parser_colr function in libsimba library prior to SMR Apr- Null pointer dereference vulnerability in parser_colr function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.

nvd

CVE-2022-26094CRITICALCVSS 9.8v10.0v11.0+1 more2022-04-11

CVE-2022-26094 [CRITICAL] CWE-476 CVE-2022-26094: Null pointer dereference vulnerability in parser_auxC function in libsimba library prior to SMR Apr- Null pointer dereference vulnerability in parser_auxC function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.

nvd

CVE-2022-26097CRITICALCVSS 9.8v10.0v11.0+1 more2022-04-11

CVE-2022-26097 [CRITICAL] CWE-476 CVE-2022-26097: Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.

nvd

CVE-2022-26099CRITICALCVSS 9.1v10.0v11.0+1 more2022-04-11

CVE-2022-26099 [CRITICAL] CWE-476 CVE-2022-26099: Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr- Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers.

nvd

CVE-2022-27572CRITICALCVSS 9.8v10.0v11.0+1 more2022-04-11

CVE-2022-27572 [CRITICAL] CWE-122 CVE-2022-27572: Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Ap Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.

nvd

CVE-2022-27571CRITICALCVSS 9.8v10.0v11.0+1 more2022-04-11

CVE-2022-27571 [CRITICAL] CWE-122 CVE-2022-27571: Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.

nvd

CVE-2022-27570CRITICALCVSS 9.8v10.0v11.0+1 more2022-04-11

CVE-2022-27570 [CRITICAL] CWE-122 CVE-2022-27570: Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.

nvd

CVE-2022-27825HIGHCVSS 7.1v10.0v11.0+1 more2022-04-11

CVE-2022-27825 [HIGH] CWE-125 CVE-2022-27825: Improper size check in sapefd_parse_meta_HEADER function of libsapeextractor library prior to SMR Ap Improper size check in sapefd_parse_meta_HEADER function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.

nvd

CVE-2022-27830HIGHCVSS 7.8v10.0v11.0+1 more2022-04-11

CVE-2022-27830 [HIGH] CWE-20 CVE-2022-27830: Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.

nvd

CVE-2022-27826HIGHCVSS 7.8v10.0v11.0+1 more2022-04-11

CVE-2022-27826 [HIGH] CWE-20 CVE-2022-27826: Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows att Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.

nvd

CVE-2022-27835HIGHCVSS 7.8v12.02022-04-11

CVE-2022-27835 [HIGH] CWE-20 CVE-2022-27835: Improper boundary check in UWB firmware prior to SMR Apr-2022 Release 1 allows arbitrary memory writ Improper boundary check in UWB firmware prior to SMR Apr-2022 Release 1 allows arbitrary memory write.

nvd

CVE-2022-27828HIGHCVSS 7.8v10.0v11.0+1 more2022-04-11

CVE-2022-27828 [HIGH] CWE-20 CVE-2022-27828: Improper validation vulnerability in MediaMonitorEvent prior to SMR Apr-2022 Release 1 allows attack Improper validation vulnerability in MediaMonitorEvent prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.

nvd

CVE-2022-26092HIGHCVSS 7.8v10.0v11.0+1 more2022-04-11

CVE-2022-26092 [HIGH] CWE-122 CVE-2022-26092: Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows arbitrary code Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows arbitrary code execution.

nvd

CVE-2022-27836HIGHCVSS 7.8v12.02022-04-11

CVE-2022-27836 [HIGH] CWE-284 CVE-2022-27836: Improper access control and path traversal vulnerability in Storage Manager and Storage Manager Serv Improper access control and path traversal vulnerability in Storage Manager and Storage Manager Service prior to SMR Apr-2022 Release 1 allow local attackers to access arbitrary system files without a proper permission. The patch adds proper validation logic to prevent arbitrary files access.

nvd

CVE-2022-27573HIGHCVSS 7.2v10.0v11.0+1 more2022-04-11

CVE-2022-27573 [HIGH] CWE-20 CVE-2022-27573: Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsi Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attackers.

nvd

CVE-2022-27574HIGHCVSS 7.2v10.0v11.0+1 more2022-04-11

CVE-2022-27574 [HIGH] CWE-20 CVE-2022-27574: Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsi Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attacker.

nvd

CVE-2022-27833HIGHCVSS 7.8v10.0v11.0+1 more2022-04-11

CVE-2022-27833 [HIGH] CWE-20 CVE-2022-27833: Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds write b Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds write by integer overflow.

nvd

CVE-2022-27834HIGHCVSS 7.0v10.0v11.0+1 more2022-04-11

CVE-2022-27834 [HIGH] CWE-367 CVE-2022-27834: Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-202 Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-2022 Release 1 allows attackers to perform malicious actions.

nvd

CVE-2022-27827HIGHCVSS 7.8v10.0v11.0+1 more2022-04-11

CVE-2022-27827 [HIGH] CWE-20 CVE-2022-27827: Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows at Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.

nvd

CVE-2022-27823HIGHCVSS 7.1v10.0v11.0+1 more2022-04-11

CVE-2022-27823 [HIGH] CWE-125 CVE-2022-27823: Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SM Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.

nvd

← Previous203 / 483Next →