Google: >> Android >> 9.0 Security Vulnerabilities
Incorrect access control in luowice v3.5.18 allows attackers to access cloud source code information via modification fo the Verify parameter in a warning message.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-30
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-30
The framework service handles pendingIntent incorrectly, allowing a malicious application with certain privileges to perform privileged actions.
CVSS Score
5.6
EPSS Score
0.003
Published
2023-02-17
Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.
CVSS Score
6.8
EPSS Score
0.0
Published
2022-12-08
Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information.
CVSS Score
4.0
EPSS Score
0.0
Published
2022-12-08
Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder.
CVSS Score
6.2
EPSS Score
0.0
Published
2022-12-08
In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784430; Issue ID: ALPS06784430.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-07-06
In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784351; Issue ID: ALPS06784351.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-07-06
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479698; Issue ID: ALPS06479698.
CVSS Score
4.4
EPSS Score
0.0
Published
2022-06-06
In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06478078; Issue ID: ALPS06478078.
CVSS Score
4.4
EPSS Score
0.0
Published
2022-06-06