Export limit exceeded: 79391 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (79391 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-39764 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In Settings, there is a possible way to display an incorrect app name due to improper input validation. This could lead to local escalation of privilege via app spoofing with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-170642995 | ||||
| CVE-2021-39763 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In Settings, there is a possible way to make the user enable WiFi due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-199176115 | ||||
| CVE-2021-39762 | 1 Google | 1 Android | 2024-11-21 | 7.5 High |
| In tremolo, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-210625816 | ||||
| CVE-2021-39759 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In libstagefright, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-180200830 | ||||
| CVE-2021-39758 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In WindowManager, there is a possible way to start a foreground activity from the background due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-205130886 | ||||
| CVE-2021-39752 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In Bubbles, there is a possible way to interfere with Bubbles due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-202756848 | ||||
| CVE-2021-39750 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In PackageManager, there is a possible way to change the splash screen theme of other apps due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-206474016 | ||||
| CVE-2021-39749 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In WindowManager, there is a possible way to start non-exported and protected activities due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-205996115 | ||||
| CVE-2021-39746 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-194696395 | ||||
| CVE-2021-39743 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In PackageManager, there is a possible way to update the last usage time of another package due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-201534884 | ||||
| CVE-2021-39741 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In Keymaster, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-173567719 | ||||
| CVE-2021-39738 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In CarSetings, there is a possible to pair BT device bypassing user's consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-216190509 | ||||
| CVE-2021-39734 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In sendMessage of OneToOneChatImpl.java (? TBD), there is a possible way to send an RCS message without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-208650395References: N/A | ||||
| CVE-2021-39732 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In copy_io_entries of lwis_ioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-205992503References: N/A | ||||
| CVE-2021-39726 | 1 Google | 1 Android | 2024-11-21 | 7.5 High |
| In cd_ParseMsg of cd_codec.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-181782896References: N/A | ||||
| CVE-2021-39716 | 1 Google | 1 Android | 2024-11-21 | 7.5 High |
| Product: AndroidVersions: Android kernelAndroid ID: A-206977562References: N/A | ||||
| CVE-2021-39714 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In ion_buffer_kmap_get of ion.c, there is a possible use-after-free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-205573273References: Upstream kernel | ||||
| CVE-2021-39713 | 2 Debian, Google | 2 Debian Linux, Android | 2024-11-21 | 7.0 High |
| Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel | ||||
| CVE-2021-39709 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In sendSipAccountsRemovedNotification of SipAccountRegistry.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12Android ID: A-208817618 | ||||
| CVE-2021-39707 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In onReceive of AppRestrictionsFragment.java, there is a possible way to start a phone call without permissions due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-200688991 | ||||