Google: >> Android >> 10.0 Security Vulnerabilities
An improper error handling in Exynos CP booting driver prior to SMR Oct-2021 Release 1 allows local attackers to bypass a Secure Memory Protector of Exynos CP Memory.
CVSS Score
6.4
EPSS Score
0.0
Published
2021-10-06
Lack of boundary checking of a buffer in livfivextractor library prior to SMR Oct-2021 Release 1 allows OOB read.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-10-06
Improper authentication in InputManagerService prior to SMR Oct-2021 Release 1 allows monitoring the touch event.
CVSS Score
4.0
EPSS Score
0.0
Published
2021-10-06
Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Oct-2021 Release 1 allows attackers to write file as system UID via BT remote socket.
CVSS Score
7.5
EPSS Score
0.001
Published
2021-10-06
Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in log.
CVSS Score
2.5
EPSS Score
0.0
Published
2021-10-06
Lack of boundary checking of a buffer in recv_data() of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read.
CVSS Score
5.5
EPSS Score
0.0
Published
2021-10-06
A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release 1 allows attacker to trigger IV reuse vulnerability with privileged process.
CVSS Score
6.0
EPSS Score
0.0
Published
2021-10-06
A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference.
CVSS Score
2.3
EPSS Score
0.0
Published
2021-10-06
A possible guessing and confirming a byte memory vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows attackers to read arbitrary memory address.
CVSS Score
4.4
EPSS Score
0.0
Published
2021-10-06
A possible stack-based buffer overflow vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows arbitrary code execution.
CVSS Score
6.0
EPSS Score
0.0
Published
2021-10-06