Shodan
Vulnerabilities
Vulnerable Software
Google:  >> Android  >> 11.0  Security Vulnerabilities
CVE-2022-32598
In widevine, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07446228; Issue ID: ALPS07446228.
CVSS Score
6.7
EPSS Score
0.0
Published
2022-12-05
CVE-2022-32619
In keyinstall, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07439659; Issue ID: ALPS07439659.
CVSS Score
6.7
EPSS Score
0.0
Published
2022-12-05
CVE-2022-32620
In mpu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07541753; Issue ID: ALPS07541753.
CVSS Score
6.7
EPSS Score
0.0
Published
2022-12-05
CVE-2022-39883
Improper authorization vulnerability in StorageManagerService prior to SMR Nov-2022 Release 1 allows local attacker to call privileged API.
CVSS Score
4.0
EPSS Score
0.0
Published
2022-11-09
CVE-2022-39884
Improper access control vulnerability in IImsService prior to SMR Nov-2022 Release 1 allows local attacker to access to Call information.
CVSS Score
4.3
EPSS Score
0.0
Published
2022-11-09
CVE-2022-39885
Improper access control vulnerability in BootCompletedReceiver_CMCC in DeviceManagement prior to SMR Nov-2022 Release 1 allows local attacker to access to Device information.
CVSS Score
5.9
EPSS Score
0.0
Published
2022-11-09
CVE-2022-39886
Improper access control vulnerability in IpcRxServiceModeBigDataInfo in RIL prior to SMR Nov-2022 Release 1 allows local attacker to access Device information.
CVSS Score
5.9
EPSS Score
0.0
Published
2022-11-09
CVE-2022-39887
Improper access control vulnerability in clearAllGlobalProxy in MiscPolicy prior to SMR Nov-2022 Release 1 allows local attacker to configure EDM setting.
CVSS Score
4.3
EPSS Score
0.0
Published
2022-11-09
CVE-2022-39880
Improper input validation vulnerability in DualOutFocusViewer prior to SMR Nov-2022 Release 1 allows local attacker to perform an arbitrary code execution.
CVSS Score
7.1
EPSS Score
0.0
Published
2022-11-09
CVE-2022-39882
Heap overflow vulnerability in sflacf_fal_bytes_peek function in libsmat.so library prior to SMR Nov-2022 Release 1 allows local attacker to execute arbitrary code.
CVSS Score
8.0
EPSS Score
0.0
Published
2022-11-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved