Shodan
Vulnerabilities
Vulnerable Software
Google:  >> Android  >> 8.1  Security Vulnerabilities
CVE-2021-26277
The framework service handles pendingIntent incorrectly, allowing a malicious application with certain privileges to perform privileged actions.
CVSS Score
5.6
EPSS Score
0.004
Published
2023-02-17
CVE-2022-39913
Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.
CVSS Score
6.8
EPSS Score
0.0
Published
2022-12-08
CVE-2022-39914
Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information.
CVSS Score
4.0
EPSS Score
0.0
Published
2022-12-08
CVE-2022-39912
Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder.
CVSS Score
6.2
EPSS Score
0.0
Published
2022-12-08
CVE-2022-21767
In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784430; Issue ID: ALPS06784430.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-07-06
CVE-2022-21768
In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784351; Issue ID: ALPS06784351.
CVSS Score
8.8
EPSS Score
0.0
Published
2022-07-06
CVE-2022-23729
When the device is in factory state, it can be access the shell without adb authentication process. The LG ID is LVE-SMP-210010.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-03-04
CVE-2022-20028
In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06198663; Issue ID: ALPS06198663.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-02-09
CVE-2022-20041
In Bluetooth, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108596; Issue ID: ALPS06108596.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-02-09
CVE-2022-20042
In Bluetooth, there is a possible information disclosure due to incorrect error handling. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108487; Issue ID: ALPS06108487.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-02-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved