Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2024-12-05 CVE-2018-9402 Out-of-bounds Write vulnerability in Google Android
In multiple functions of gl_proc.c, there is a buffer overwrite due to a missing bounds check.
local
low complexity
google CWE-787
7.8
2024-12-02 CVE-2018-9426 Insufficient Entropy vulnerability in Google Android
In  RsaKeyPairGenerator::getNumberOfIterations of RSAKeyPairGenerator.java, an incorrect implementation could cause weak RSA key pairs being generated. This could lead to crypto vulnerability with no additional execution privileges needed.
network
low complexity
google CWE-331
7.5
2024-12-02 CVE-2018-9431 Unspecified vulnerability in Google Android 8.0/8.1
In OSUInfo of OSUInfo.java, there is a possible escalation of privilege due to improper input validation.
local
low complexity
google
7.8
2024-12-02 CVE-2018-9413 Out-of-bounds Write vulnerability in Google Android
In handle_notification_response of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
2024-12-02 CVE-2018-9414 Out-of-bounds Write vulnerability in Google Android
In gattServerSendResponseNative of com_android_bluetooth_gatt.cpp, there is a possible out of bounds stack write due to a missing bounds check.
local
low complexity
google CWE-787
7.8
2024-12-02 CVE-2018-9380 Out-of-bounds Write vulnerability in Google Android
In l2c_lcc_proc_pdu of l2c_fcr.cc, there is a possible out of bounds write due to improper input validation.
network
low complexity
google CWE-787
8.8
2024-12-02 CVE-2018-9381 Use of Uninitialized Resource vulnerability in Google Android 8.1
In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data.
network
low complexity
google CWE-908
7.5
2024-11-28 CVE-2018-9374 Unspecified vulnerability in Google Android
In installPackageLI of PackageManagerService.java, there is a possible permissions bypass.
local
low complexity
google
7.8
2024-11-27 CVE-2017-13323 Integer Overflow or Wraparound vulnerability in Google Android
In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
2024-11-27 CVE-2017-13316 Missing Authorization vulnerability in Google Android
In checkPermissions of RecognitionService.java, there is a possible permissions bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8