Google Android vulnerabilities

CVE-2024-20147 [MEDIUM] CWE-617 CVE-2024-20147: In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This co In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389046 (Note: For MT79XX chipsets) / ALPS09136501 (Note: For MT2737, MT3603, MT6XXX, and MT8XXX chip

CVE-2025-20643 [LOW] CWE-1295 CVE-2025-20643: In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to loca In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issue ID: MSV-2056.

CVE-2024-45569 [CRITICAL] CVE-2024-45569: WLAN Android Security Bulletin 2025-02-01 CVE: CVE-2024-45569 Severity: CRITICAL Component: WLAN References: A-377311993 QC-CR#3852339

CVE-2024-38420 [HIGH] CVE-2024-38420: Closed-source component Android Security Bulletin 2025-02-01 CVE: CVE-2024-38420 Severity: HIGH Component: Closed-source component References: A-357616296 *

CVE-2024-49721 [HIGH] CVE-2024-49721: Android Security Bulletin 2025-02-01 CVE: CVE-2024-49721 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13 References: A-354682735 Android Security Bulletin 2025-02-01 CVE: CVE-2024-49721 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13 References: A-354682735

CVE-2025-0098 [HIGH] CVE-2025-0098: Android Security Bulletin 2025-02-01 CVE: CVE-2025-0098 Severity: HIGH Type: EoP Affected AOSP versions: 15 References: A-367266072 Android Security Bulletin 2025-02-01 CVE: CVE-2025-0098 Severity: HIGH Type: EoP Affected AOSP versions: 15 References: A-367266072

CVE-2024-49746 [HIGH] CVE-2024-49746: Android Security Bulletin 2025-02-01 CVE: CVE-2024-49746 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-359179312 Android Security Bulletin 2025-02-01 CVE: CVE-2024-49746 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-359179312 [2]

CVE-2024-38404 [HIGH] CVE-2024-38404: Closed-source component Android Security Bulletin 2025-02-01 CVE: CVE-2024-38404 Severity: HIGH Component: Closed-source component References: A-357616389 *

CVE-2024-49833 [HIGH] CVE-2024-49833: Camera Android Security Bulletin 2025-02-01 CVE: CVE-2024-49833 Severity: HIGH Component: Camera References: A-377312639 QC-CR#3874372 [2] [3] [4]

CVE-2025-0091 [HIGH] CVE-2025-0091: Android Security Bulletin 2025-02-01 CVE: CVE-2025-0091 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-366401629 Android Security Bulletin 2025-02-01 CVE: CVE-2025-0091 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-366401629

CVE-2024-49723 [HIGH] CVE-2024-49723: Android Security Bulletin 2025-02-01 CVE: CVE-2024-49723 Severity: HIGH Type: ID Affected AOSP versions: 15 References: A-357870429 [2] Android Security Bulletin 2025-02-01 CVE: CVE-2024-49723 Severity: HIGH Type: ID Affected AOSP versions: 15 References: A-357870429 [2]

CVE-2024-46973 [HIGH] CVE-2024-46973: PowerVR-GPU Android Security Bulletin 2025-02-01 CVE: CVE-2024-46973 Severity: HIGH Component: PowerVR-GPU References: A-379728401 PP-160739*

CVE-2025-0097 [HIGH] CVE-2025-0097: Android Security Bulletin 2025-02-01 CVE: CVE-2025-0097 Severity: HIGH Type: EoP Affected AOSP versions: 15 References: A-364037868 Android Security Bulletin 2025-02-01 CVE: CVE-2025-0097 Severity: HIGH Type: EoP Affected AOSP versions: 15 References: A-364037868

CVE-2024-52935 [MEDIUM] CVE-2024-52935: PowerVR-GPU Android Security Bulletin 2025-02-01 CVE: CVE-2024-52935 Severity: HIGH Component: PowerVR-GPU References: A-380478495 PP-171230*

CVE-2024-49743 [HIGH] CVE-2024-49743: Android Security Bulletin 2025-02-01 CVE: CVE-2024-49743 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-305695605 Android Security Bulletin 2025-02-01 CVE: CVE-2024-49743 Severity: HIGH Type: EoP Affected AOSP versions: 12, 12L, 13, 14, 15 References: A-305695605 [2] [3]

CVE-2024-49839 [HIGH] CVE-2024-49839: WLAN Android Security Bulletin 2025-02-01 CVE: CVE-2024-49839 Severity: HIGH Component: WLAN References: A-377311997 QC-CR#3895196

CVE-2025-0088 [HIGH] CVE-2025-0088: mremap Android Security Bulletin 2025-02-01 CVE: CVE-2025-0088 Severity: HIGH Type: EoP Component: mremap References: A-377672115 Upstream kernel [2]

CVE-2024-53104 [HIGH] CVE-2024-53104: UVC Android Security Bulletin 2025-02-01 CVE: CVE-2024-53104 Severity: HIGH Type: EoP Component: UVC References: A-378455392 Upstream kernel [2]

CVE-2024-49834 [HIGH] CVE-2024-49834: Camera Android Security Bulletin 2025-02-01 CVE: CVE-2024-49834 Severity: HIGH Component: Camera References: A-377312055 QC-CR#3875406

CVE-2024-45582 [HIGH] CVE-2024-45582: Camera Android Security Bulletin 2025-02-01 CVE: CVE-2024-45582 Severity: HIGH Component: Camera References: A-377312377 QC-CR#3868093