Filtered by vendor Google
Subscriptions
Filtered by product Android
Subscriptions
Total
8458 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-9366 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libSBRdec there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112052062 | ||||
| CVE-2019-9365 | 1 Google | 1 Android | 2024-11-21 | 9.8 Critical |
| In Bluetooth, there is a possible deserialization error due to missing string validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109838537 | ||||
| CVE-2019-9364 | 1 Google | 1 Android | 2024-11-21 | 3.3 Low |
| In AudioService, there is a possible trigger of background user audio due to a permissions bypass. This could lead to local information disclosure by playing the background user's audio with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-73364631 | ||||
| CVE-2019-9363 | 1 Google | 1 Android | 2024-11-21 | 8.8 High |
| In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-123584306 | ||||
| CVE-2019-9362 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libSACdec, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120426980 | ||||
| CVE-2019-9361 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111762807 | ||||
| CVE-2019-9360 | 1 Google | 1 Android | 2024-11-21 | 4.4 Medium |
| In the TEE, there's a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120610663 | ||||
| CVE-2019-9359 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111407302 | ||||
| CVE-2019-9358 | 1 Google | 1 Android | 2024-11-21 | 7.3 High |
| In NFC, there is a possible out of bounds write due to a missing bounds check. This could lead to a to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-120156401 | ||||
| CVE-2019-9357 | 1 Google | 1 Android | 2024-11-21 | 8.8 High |
| In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112662995 | ||||
| CVE-2019-9356 | 1 Google | 1 Android | 2024-11-21 | 5.0 Medium |
| In NFC server, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111699773 | ||||
| CVE-2019-9355 | 1 Google | 1 Android | 2024-11-21 | 7.5 High |
| In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-115903122 | ||||
| CVE-2019-9354 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In NFC server, there's a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-118148142 | ||||
| CVE-2019-9353 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-123024201 | ||||
| CVE-2019-9352 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libstagefright, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-124253062 | ||||
| CVE-2019-9351 | 1 Google | 1 Android | 2024-11-21 | 3.3 Low |
| In SyncStatusObserver, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check. This could lead to local limited information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-128599864 | ||||
| CVE-2019-9350 | 1 Google | 1 Android | 2024-11-21 | 7.8 High |
| In Keymaster, there is a possible EoP due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-129562815 | ||||
| CVE-2019-9349 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libstagefright, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-124330204 | ||||
| CVE-2019-9348 | 1 Google | 1 Android | 2024-11-21 | 6.5 Medium |
| In libstagefright, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-128431761 | ||||
| CVE-2019-9347 | 1 Google | 1 Android | 2024-11-21 | 5.5 Medium |
| In the m4v_h263 codec, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109891727 | ||||