Latest google android Vulnerabilities

5131222765146190519
Google Chrome<127.0.6533.64
Google Android*
3963778775685579986
Google Chrome<127.0.6533.51
Google Android*
1197206695180136257
Google Chrome<126.0.6478.186
Google Android*
CVE-2024-34599
Improper input validation in Tips prior to version 6.2.9.4 in Android 14 allows local attacker to send broadcast with Tips&#39; privilege.
Samsung Tips<6.2.9.4
Google Android=14.0
CVE-2024-21466
Integer Underflow (Wrap or Wraparound) in WLAN Host Communication
Qualcomm Fastconnect 7800 Firmware
Qualcomm Fastconnect 7800
Qualcomm Immersive Home 3210 Platform Firmware
Qualcomm Immersive Home 3210 Platform
Qualcomm Immersive Home 326 Platform Firmware
Qualcomm Immersive Home 326 Platform
and 122 more
CVE-2024-21458
Buffer Over-read in WLAN HOST
Qualcomm Ar8035 Firmware
Qualcomm Ar8035
Qualcomm Csr8811 Firmware
Qualcomm Csr8811
Qualcomm Fastconnect 7800 Firmware
Qualcomm Fastconnect 7800
and 216 more
CVE-2024-21457
Buffer Over-read in WLAN Host Communication
Qualcomm Ar8035 Firmware
Qualcomm Ar8035
Qualcomm Csr8811 Firmware
Qualcomm Csr8811
Qualcomm Fastconnect 7800 Firmware
Qualcomm Fastconnect 7800
and 216 more
CVE-2024-34726
In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execu...
Google Android
CVE-2024-20076
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed f...
Google Android
CVE-2024-20077
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed f...
Google Android
CVE-2024-21460
Use of Insufficiently Random Values in Core
Qualcomm Fastconnect 6900 Firmware
Qualcomm Fastconnect 6900
Qualcomm Fastconnect 7800 Firmware
Qualcomm Fastconnect 7800
Qualcomm Qcm8550 Firmware
Qualcomm Qcm8550
and 25 more
CVE-2024-23368
Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
Qualcomm Apq8064au Firmware
Qualcomm Apq8064au
Qualcomm Aqt1000 Firmware
Qualcomm Aqt1000
Qualcomm Ar8035 Firmware
Qualcomm Ar8035
and 681 more
CVE-2024-21465
Buffer Over-read in Trusted Execution Environment
Qualcomm 9205 Lte Modem Firmware
Qualcomm 9205 Lte Modem
Qualcomm Aqt1000 Firmware
Qualcomm Aqt1000
Qualcomm Ar8031 Firmware
Qualcomm Ar8031
and 513 more
CVE-2024-21461
Double Free in HLOS
Qualcomm 315 5g Iot Modem Firmware
Qualcomm 315 5g Iot Modem
Qualcomm 9205 Lte Modem Firmware
Qualcomm 9205 Lte Modem
Qualcomm Apq8017 Firmware
Qualcomm Apq8017
and 621 more
CVE-2024-34722
In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol. This could lead to remote escalation of privilege wit...
Google Android
CVE-2024-31339
In multiple functions of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges neede...
Google Android
CVE-2024-21462
Buffer Over-read in TZ Secure OS
Qualcomm 315 5g Iot Modem Firmware
Qualcomm 315 5g Iot Modem
Qualcomm 9205 Lte Modem Firmware
Qualcomm 9205 Lte Modem
Qualcomm Aqt1000 Firmware
Qualcomm Aqt1000
and 617 more
CVE-2024-0153
Mali GPU Firmware allows improper GPU processing operations
Google Android
CVE-2024-31331
In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code. This could lead to local escalation of privilege with User ex...
Google Android
CVE-2024-34720
In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote...
Google Android
CVE-2024-31334
In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with...
Google Android
CVE-2024-31335
In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no a...
Google Android
CVE-2024-21469
Permissions, Privileges, and Access Control issues in TZ Secure OS
Qualcomm 9205 Lte Modem Firmware
Qualcomm 9205 Lte Modem
Qualcomm Aqt1000 Firmware
Qualcomm Aqt1000
Qualcomm Ar8031 Firmware
Qualcomm Ar8031
and 443 more
CVE-2024-31320
In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion device association without any confirmation due to CDM. This could lead to local escalation of privilege ...
Google Android
CVE-2024-34721
In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no addi...
Google Android
CVE-2024-31332
In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi connections due to a missing permission check. This could lead to local escalation of privilege with no addit...
Google Android
CVE-2024-34725
In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional e...
Google Android
CVE-2024-23372
Integer Overflow or Wraparound in Graphics
Qualcomm Fastconnect 6200 Firmware
Qualcomm Fastconnect 6200
Qualcomm Fastconnect 6700 Firmware
Qualcomm Fastconnect 6700
Qualcomm Fastconnect 6900 Firmware
Qualcomm Fastconnect 6900
and 217 more
CVE-2024-23380
Use After Free in Graphics
Qualcomm Fastconnect 6200 Firmware
Qualcomm Fastconnect 6200
Qualcomm Fastconnect 6700 Firmware
Qualcomm Fastconnect 6700
Qualcomm Fastconnect 6900 Firmware
Qualcomm Fastconnect 6900
and 207 more
CVE-2024-23373
Use After Free in Graphics
Qualcomm 315 5g Iot Modem Firmware
Qualcomm 315 5g Iot Modem
Qualcomm Aqt1000 Firmware
Qualcomm Aqt1000
Qualcomm Ar8031 Firmware
Qualcomm Ar8031
and 439 more
CVE-2024-34723
In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code. This could lead to local escalation of ...
Google Android
CVE-2024-34724
In _UnrefAndMaybeDestroy of pmr.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution pri...
Google Android
8874833604338344300
Google Chrome<126.0.6478.122
Google Android*
7626762793319888685
Google Chrome<126.0.6478.110
Google Android*
CVE-2024-32912
there is a possible persistent Denial of Service due to test/debugging code left in a production build. This could lead to local denial of service of impaired use of the device with no additional exec...
Google Android
CVE-2024-32913
In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed...
Google Android
CVE-2024-32911
There is a possible escalation of privilege due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not nee...
Google Android
CVE-2024-32906
In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
Google Android
CVE-2024-32908
In sec_media_protect of media.c, there is a possible permission bypass due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User in...
Google Android
CVE-2024-32909
In handle_msg of main.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User ...
Google Android
CVE-2024-32907
In memcall_add of memlog.c, there is a possible buffer overflow due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User ...
Google Android
CVE-2024-32910
In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack data disclosure due to uninitialized data. This could lead to local information disclosure with no addi...
Google Android
CVE-2024-32904
In ProtocolVsimOperationAdapter() of protocolvsimadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmwa...
Google Android
CVE-2024-32905
In circ_read of link_device_memory_legacy.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges ...
Google Android
CVE-2024-32903
In prepare_response_locked of lwis_transaction.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional executio...
Google Android
CVE-2024-32901
In v4l2_smfc_qbuf of smfc-v4l2-ioctls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges...
Google Android
CVE-2024-32902
Remote prevention of access to cellular service with no user interaction (for example, crashing the cellular radio service with a malformed packet)
Google Android
CVE-2024-32899
In gpu_pm_power_off_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected memory due to a race condition. This could lead to local escalation of privilege to TEE with no additio...
Google Android
CVE-2024-32900
In lwis_fence_signal of lwis_debug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from hal_camera_default SELinux label with no additio...
Google Android
CVE-2024-32895
In BCMFASTPATH of dhd_msgbuf.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. ...
Google Android

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203