CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Google » Android » * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-0532 362 Mem. Corr. 2021-06-21 2021-06-23
4.4
None Local Medium Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185196177
2 CVE-2021-0531 416 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195272
3 CVE-2021-0530 787 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible out of bounds write due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185196175
4 CVE-2021-0529 667 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195268
5 CVE-2021-0528 415 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195266
6 CVE-2021-0527 416 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185193931
7 CVE-2021-0526 787 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible out of bounds write due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195264
8 CVE-2021-0525 787 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185193929
9 CVE-2021-0512 787 Overflow 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-173843328References: Upstream kernel
10 CVE-2021-0498 415 Mem. Corr. 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461321
11 CVE-2021-0497 416 Mem. Corr. 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461320
12 CVE-2021-0496 416 Mem. Corr. 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183467912
13 CVE-2021-0495 787 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible out of bounds write due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183459083
14 CVE-2021-0494 190 Overflow 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461318
15 CVE-2021-0493 787 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461317
16 CVE-2021-0492 787 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183459078
17 CVE-2021-0491 269 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461315
18 CVE-2021-0490 787 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183464868
19 CVE-2021-0489 787 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183464866
20 CVE-2021-0488 787 Exec Code 2021-04-15 2021-04-21
7.2
None Local Low Not required Complete Complete Complete
In pb_write of pb_encode.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-178754781
21 CVE-2021-0468 269 2021-04-13 2021-04-20
4.4
None Local Medium Not required Partial Partial Partial
In LK, there is a possible escalation of privilege due to an insecure default value. This could lead to local escalation of privilege for an attacker who has physical access to the device with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-180427272
22 CVE-2021-0467 787 2021-06-14 2021-06-22
4.6
None Local Low Not required Partial Partial Partial
In Chromecast bootROM, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege in the bootloader, with physical USB access, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-174490700
23 CVE-2021-0465 787 2021-03-10 2021-03-17
4.6
None Local Low Not required Partial Partial Partial
In GenerateFaceMask of face.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-172005755
24 CVE-2021-0464 787 Overflow 2021-03-10 2021-03-17
4.6
None Local Low Not required Partial Partial Partial
In sound_trigger_event_alloc of platform.h, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-167663878
25 CVE-2021-0463 125 2021-03-10 2021-03-16
1.9
None Local Medium Not required Partial None None
In convertToHidl of convert.cpp, there is a possible out of bounds read due to uninitialized data from ReturnFrameworkMessage. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-154867068
26 CVE-2021-0462 269 2021-03-10 2021-03-16
4.6
None Local Low Not required Partial Partial Partial
In the NXP NFC firmware, there is a possible insecure firmware update due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-168799695
27 CVE-2021-0461 787 2021-03-10 2021-03-15
4.6
None Local Low Not required Partial Partial Partial
In iaxxx_core_sensor_change_state of iaxxx-module.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175124074
28 CVE-2021-0460 125 Overflow 2021-03-10 2021-03-15
2.1
None Local Low Not required Partial None None
In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-156739245
29 CVE-2021-0459 125 2021-03-10 2021-03-15
2.1
None Local Low Not required Partial None None
In fts_driver_test_write of fts_proc.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-157154534
30 CVE-2021-0458 190 Overflow 2021-03-10 2021-03-16
2.1
None Local Low Not required Partial None None
In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-157156744
31 CVE-2021-0457 787 Overflow 2021-03-10 2021-03-15
4.6
None Local Low Not required Partial Partial Partial
In the FingerTipS touch screen driver, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-157155375
32 CVE-2021-0456 787 2021-03-10 2021-03-15
4.6
None Local Low Not required Partial Partial Partial
In the Citadel chip firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-174769927
33 CVE-2021-0455 787 2021-03-10 2021-03-12
7.2
None Local Low Not required Complete Complete Complete
In the Citadel chip firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175116439
34 CVE-2021-0454 787 2021-03-10 2021-03-12
7.2
None Local Low Not required Complete Complete Complete
In the Citadel chip firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175117047
35 CVE-2021-0453 665 2021-03-10 2021-03-12
2.1
None Local Low Not required Partial None None
In the Titan-M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175117199
36 CVE-2021-0452 665 2021-03-10 2021-03-12
2.1
None Local Low Not required Partial None None
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175117261
37 CVE-2021-0451 665 2021-03-10 2021-03-12
2.1
None Local Low Not required Partial None None
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175117871
38 CVE-2021-0450 665 2021-03-10 2021-03-12
2.1
None Local Low Not required Partial None None
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175117880
39 CVE-2021-0449 665 2021-03-10 2021-03-12
2.1
None Local Low Not required Partial None None
In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-175117965
40 CVE-2021-0399 416 Mem. Corr. 2021-03-10 2021-03-15
4.6
None Local Low Not required Partial Partial Partial
In qtaguid_untag of xt_qtaguid.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-176919394References: Upstream kernel
41 CVE-2021-0342 416 Mem. Corr. 2021-01-11 2021-01-13
4.6
None Local Low Not required Partial Partial Partial
In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Versions: Android kernel; Android ID: A-146554327.
42 CVE-2021-0324 2021-06-14 2021-06-21
10.0
None Remote Low Not required Complete Complete Complete
Product: AndroidVersions: Android SoCAndroid ID: A-175402462
43 CVE-2021-0301 787 2021-01-11 2021-01-13
4.6
None Local Low Not required Partial Partial Partial
In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android SoC; Android ID: A-172514667.
44 CVE-2020-27068 125 2020-12-15 2020-12-17
2.1
None Local Low Not required Partial None None
In the nl80211_policy policy of nl80211.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not required for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-119770583
45 CVE-2020-27067 362 2020-12-15 2020-12-17
4.4
None Local Medium Not required Partial Partial Partial
In the l2tp subsystem, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-152409173
46 CVE-2020-27066 416 2020-12-15 2020-12-17
4.6
None Local Low Not required Partial Partial Partial
In xfrm6_tunnel_free_spi of net/ipv6/xfrm6_tunnel.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-168043318
47 CVE-2020-0466 416 2020-12-14 2020-12-15
7.2
None Local Low Not required Complete Complete Complete
In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147802478References: Upstream kernel
48 CVE-2020-0465 787 2020-12-14 2021-03-08
7.2
None Local Low Not required Complete Complete Complete
In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-162844689References: Upstream kernel
49 CVE-2020-0457 787 2020-12-14 2020-12-15
7.5
None Remote Low Not required Partial Partial Partial
There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-170367562
50 CVE-2020-0456 787 2020-12-14 2020-12-15
7.5
None Remote Low Not required Partial Partial Partial
There is a possible out of bounds write due to a missing bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-170378843
Total number of vulnerabilities : 718   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.