Vulnerabilities > Google > Android
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-25 | CVE-2024-47027 | Unspecified vulnerability in Google Android In sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical memory access due to improper input validation. | 7.8 |
| 2024-10-25 | CVE-2024-47028 | Integer Overflow or Wraparound vulnerability in Google Android In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow. | 4.4 |
| 2024-10-25 | CVE-2024-47029 | Out-of-bounds Read vulnerability in Google Android In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check. | 5.5 |
| 2024-10-25 | CVE-2024-47033 | Use After Free vulnerability in Google Android In lwis_allocator_free of lwis_allocator.c, there is a possible memory corruption due to a use after free. | 7.8 |
| 2024-10-25 | CVE-2024-47034 | Out-of-bounds Read vulnerability in Google Android there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2024-10-25 | CVE-2024-47035 | Out-of-bounds Write vulnerability in Google Android In vring_init of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to a logic error in the code. | 7.8 |
| 2024-10-25 | CVE-2024-47041 | Out-of-bounds Read vulnerability in Google Android In valid_address of syscall.c, there is a possible out of bounds read due to an incorrect bounds check. | 7.8 |
| 2024-10-09 | CVE-2024-39436 | Command Injection vulnerability in Google Android 13.0/14.0 In linkturbonative service, there is a possible command injection due to improper input validation. | 6.7 |
| 2024-10-09 | CVE-2024-39437 | Command Injection vulnerability in Google Android 13.0/14.0 In linkturbonative service, there is a possible command injection due to improper input validation. | 6.7 |
| 2024-10-09 | CVE-2024-39438 | Command Injection vulnerability in Google Android 13.0/14.0 In linkturbonative service, there is a possible command injection due to improper input validation. | 6.7 |