Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Android
(Google)| Repositories | https://github.com/torvalds/linux |
| #Vulnerabilities | 6923 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-01 | CVE-2023-42648 | In engineermode, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | Android | 5.5 | ||
| 2023-11-01 | CVE-2023-42649 | In engineermode, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | Android | 5.5 | ||
| 2023-11-01 | CVE-2023-42650 | In engineermode, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | Android | 5.5 | ||
| 2023-11-01 | CVE-2023-42651 | In engineermode, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | Android | 5.5 | ||
| 2023-11-01 | CVE-2023-42652 | In engineermode, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | Android | 5.5 | ||
| 2023-11-01 | CVE-2023-42654 | In dm service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed | Android | 5.5 | ||
| 2009-05-26 | CVE-2009-1754 | The PackageManagerService class in services/java/com/android/server/PackageManagerService.java in Android 1.5 through 1.5 CRB42 does not properly check developer certificates during processing of sharedUserId requests at an application's installation time, which allows remote user-assisted attackers to access application data by creating a package that specifies a shared user ID with an arbitrary application. | Android | N/A | ||
| 2009-07-17 | CVE-2009-2348 | Android 1.5 CRBxx allows local users to bypass the (1) Manifest.permission.CAMERA (aka android.permission.CAMERA) and (2) Manifest.permission.AUDIO_RECORD (aka android.permission.RECORD_AUDIO) configuration settings by installing and executing an application that does not make a permission request before using the camera or microphone. | Android | N/A | ||
| 2009-10-14 | CVE-2009-2999 | The com.android.phone process in Android 1.5 CRBxx allows remote attackers to cause a denial of service (application restart and network disconnection) via an SMS message containing a malformed WAP Push message that triggers an ArrayIndexOutOfBoundsException exception, possibly a related issue to CVE-2009-2656. | Android | N/A | ||
| 2009-10-14 | CVE-2009-3698 | An unspecified function in the Dalvik API in Android 1.5 and earlier allows remote attackers to cause a denial of service (system process restart) via a crafted application, possibly a related issue to CVE-2009-2656. | Android | N/A |