Google Android vulnerabilities

9,646 known vulnerabilities affecting google/android.

Total CVEs

9,646

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL883HIGH5184MEDIUM3317LOW260UNKNOWN2

Vulnerabilities

Page 229 of 483

CVE-2021-0625MEDIUMCVSS 6.7v10.0v11.02021-10-25

CVE-2021-0625 [MEDIUM] CWE-667 CVE-2021-0625: In ccu, there is a possible memory corruption due to improper locking. This could lead to local esca In ccu, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05594996; Issue ID: ALPS05594996.

nvd

CVE-2021-0634MEDIUMCVSS 6.7v11.02021-10-25

CVE-2021-0634 [MEDIUM] CWE-908 CVE-2021-0634: In display driver, there is a possible memory corruption due to uninitialized data. This could lead In display driver, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05594994; Issue ID: ALPS05594994.

nvd

CVE-2021-0410MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0410 [MEDIUM] CWE-125 CVE-2021-0410: In flv extractor, there is a possible out of bounds read due to an incorrect bounds check. This coul In flv extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561360; Issue ID: ALPS05561360.

nvd

CVE-2021-0414MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0414 [MEDIUM] CWE-125 CVE-2021-0414: In flv extractor, there is a possible out of bounds read due to a heap buffer overflow. This could l In flv extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561384; Issue ID: ALPS05561384.

nvd

CVE-2021-0662MEDIUMCVSS 6.7v9.0v10.0+1 more2021-10-25

CVE-2021-0662 [MEDIUM] CWE-787 CVE-2021-0662: In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could l In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05844434; Issue ID: ALPS05844434.

nvd

CVE-2021-0409MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0409 [MEDIUM] CWE-125 CVE-2021-0409: In flv extractor, there is a possible out of bounds read due to an incorrect bounds check. This coul In flv extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561359; Issue ID: ALPS05561359.

nvd

CVE-2021-0412MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0412 [MEDIUM] CWE-125 CVE-2021-0412: In flv extractor, there is a possible out of bounds read due to a missing bounds check. This could l In flv extractor, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561366; Issue ID: ALPS05561366.

nvd

CVE-2021-0413MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0413 [MEDIUM] CWE-125 CVE-2021-0413: In flv extractor, there is a possible out of bounds read due to a missing bounds check. This could l In flv extractor, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561379; Issue ID: ALPS05561379.

nvd

CVE-2021-0616MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0616 [MEDIUM] CWE-125 CVE-2021-0616: In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could l In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561389; Issue ID: ALPS05561389.

nvd

CVE-2021-0617MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0617 [MEDIUM] CWE-125 CVE-2021-0617: In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could l In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561391; Issue ID: ALPS05561391.

nvd

CVE-2021-0632MEDIUMCVSS 6.5v8.1v9.0+2 more2021-10-25

CVE-2021-0632 [MEDIUM] CWE-125 CVE-2021-0632: In wifi driver, there is a possible out of bounds read due to a missing bounds check. This could lea In wifi driver, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to a proximal attacker under certain build conditions with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05560246; Issue ID: ALPS05551383.

nvd

CVE-2021-0618MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0618 [MEDIUM] CWE-125 CVE-2021-0618: In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could l In ape extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561394; Issue ID: ALPS05561394.

nvd

CVE-2021-0661MEDIUMCVSS 6.7v9.0v10.0+1 more2021-10-25

CVE-2021-0661 [MEDIUM] CWE-787 CVE-2021-0661: In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could l In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05844413; Issue ID: ALPS05844413.

nvd

CVE-2021-0615MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0615 [MEDIUM] CWE-125 CVE-2021-0615: In flv extractor, there is a possible out of bounds read due to an integer overflow. This could lead In flv extractor, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561369; Issue ID: ALPS05561369.

nvd

CVE-2021-0411MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0411 [MEDIUM] CWE-125 CVE-2021-0411: In flv extractor, there is a possible out of bounds read due to an integer overflow. This could lead In flv extractor, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561362; Issue ID: ALPS05561362.

nvd

CVE-2021-0614MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0614 [MEDIUM] CWE-125 CVE-2021-0614: In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This coul In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05495528; Issue ID: ALPS05495528.

nvd

CVE-2021-0613MEDIUMCVSS 5.5v10.0v11.02021-10-25

CVE-2021-0613 [MEDIUM] CWE-125 CVE-2021-0613: In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This coul In asf extractor, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05489178; Issue ID: ALPS05489178.

nvd

CVE-2021-0663MEDIUMCVSS 6.7v9.0v10.0+1 more2021-10-25

CVE-2021-0663 [MEDIUM] CWE-787 CVE-2021-0663: In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could l In audio DSP, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05844458; Issue ID: ALPS05844458.

nvd

CVE-2021-0705HIGHCVSS 7.8v10.0v11.0+1 more2021-10-22

CVE-2021-0705 [HIGH] CVE-2021-0705: In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running i In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running in foreground and keep granted permissions due to Bypass of Background Service Restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:

nvdandroid

CVE-2021-0708HIGHCVSS 7.8v8.1v9.0+3 more2021-10-22

CVE-2021-0708 [HIGH] CWE-610 CVE-2021-0708: In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-1832

nvdandroid

← Previous229 / 483Next →