Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
ASB-A-309938635
  • Android/platform/libcore
Missing Janus vulnerability mitigation in Java ZipEntry API 01 Oct
  • Fix available
ASB-A-318683126
  • Android/platform/frameworks/base
Local persistent DoS caused by system services calling Intent.parseUriInternal() in frameworks/base 01 Oct
  • Fix available
ASB-A-327645387
  • Android/platform/packages/modules/IntentResolver
FRP-Bypass: Accessing Sharesheet while FRP-locked 01 Oct
  • Fix available
ASB-A-327748846
  • Android/platform/packages/apps/Settings
(Split 6) (Step 32) - FRP Bypass January 2024 (Android 14) 01 Oct
  • Fix available
ASB-A-343714914
  • Android/platform/packages/modules/Wifi
Permanent device DoS due to a bug on checking SSID size in WifiConfigurationUtil#validateSsid 01 Oct
  • Fix available
ASB-A-344620633
  • Android/platform/vendor/qcom-opensource/wlan/qca-wifi-host-cmn
Buffer Over-read in WLAN Host Cmn [Q-Case#07257717] 01 Oct
  • Fix available
ASB-A-349780950
  • Android/platform/frameworks/base
In AccountManagerService's checkKeyIntent method there is a possible way to bypass Intent check and lead to LaunchAnyWhere on All Android version 01 Oct
  • Fix available
ASB-A-350500647
  • Android/:linux_kernel:Qualcomm
  • Android/platform/vendor/qcom/opensource/graphics-kernel
Use After Free in Graphics_Linux 01 Oct
  • Fix available
ASB-A-350500907
  • Android/platform/vendor/qcom-opensource/wlan/qcacld-3.0
Use After Free in WLAN HOST [Q-Case#07303560] 01 Oct
  • Fix available
PUB-A-299774545
  • Android/:unknown:
[Moderate severity]Sms_Fuzzer: Heap-buffer-overflow in sms_ParseReceivedMsgEvent_SmsDataInd 01 Oct
  • Fix available
PUB-A-299775134
  • Android/:unknown:
[Moderate severity]Sms_Fuzzer: Heap-buffer-overflow in sms_ExtractCbLanguage 01 Oct
  • Fix available
PUB-A-306211423
  • Android/:unknown:
[LDFW][Pixel] PPCFW read privilege not revoked for Non-GPU owned protected memory 01 Oct
  • Fix available
PUB-A-310937217
  • Android/:unknown:
[Zuma Pro][ABL] Potential buffer over-read leading to information disclosure 01 Oct
  • Fix available
PUB-A-315191818
  • Android/:unknown:
[ESS-CWE-] FPS FPC - Authentication Provides Signed Token Without Performing a Match 01 Oct
  • Fix available
PUB-A-319710920
  • Android/:unknown:
[ESS-CWE-20] TrustyOS and TAs - SPI Peripheral ID Not Validated By TEE 01 Oct
  • Fix available
PUB-A-319834067
  • Android/:unknown:
Pixel Modem: Over-the-air Null Pointer Dereference for malicously crafted Location Service Manager (LCSM) messages 01 Oct
  • Fix available