Software Detail
Title
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
Number of items displayed
Android Number Of NVD 6671 CRITICAL 479 HIGH 2911 MEDIUM 3048 LOW 233
URL https://www.android.com/
Explanation It is an operating system installed on smartphones provided by Google.
Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices.

The support period differs for each development vendor.
After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag
  • GPL v2
  • LGPL 2.1+
  • Mobile
  • Google
  • Apache License v2.0
Add Information URL
No Type Name URL
1 https://en.wikipedia.org/wiki/Android_version_history
2 https://source.android.com/setup/start/licenses
3 https://source.android.com/security/bulletin/
4 https://developer.android.com/
5 https://developer.android.com/about/versions/
6 https://android-developers.googleblog.com/
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1 Android 13 13 Aug. 15, 2022 Aug. 15, 2022 15 300 782 66
2 Android 12 12 Oct. 4, 2020 Oct. 4, 2020 43 468 1168 104
3 Android 11 11 Sept. 8, 2020 Sept. 8, 2020 58 626 1356 105
4 Android 10 10 Sept. 3, 2019 Sept. 3, 2019 103 670 1034 108
5 Android 9 9 Aug. 6, 2018 Aug. 6, 2018 111 459 325 35
6 Android 8 8.1.0 Dec. 5, 2017 Aug. 21, 2017 143 514 304 25
7 Android 7 7.1.2 April 4, 2017 Aug. 22, 2016 115 617 371 20
8 Android 6 6.0.1 Dec. 7, 2015 Oct. 5, 2015 109 727 389 20
9 Android 5 5.1.1 April 21, 2015 Nov. 12, 2014 67 658 317 16
10 Android 4 4.4.4 June 19, 2014 Oct. 18, 2011 53 574 271 16
11 Android 3 3.2.6 Feb. 1, 2012 Feb. 22, 2011 25 417 174 10
12 Android 2 2.2.3 Nov. 21, 2011 Oct. 26, 2009 25 421 181 12
13 Android 1 1.6 Sept. 15, 2009 Sept. 23, 2008 150 1542 2271 201
14 Android 9.0 9.0 108 437 317 34
15 Android 7.2 7.2 16 58 79 9
16 Android 14 0 0 0 0
17 Android 12.1 12.1 15 221 220 23
18 Android 12.0l 12.0l 0 25 68 9
19 Android 12.0 12.0 43 436 1134 102
20 Android 11.0 11.0 58 626 1356 105
21 Android 10.0 10.0 103 670 1034 108
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1 7.8
- 		HIGH
Local 		there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed … CWE-787
 Out-of-bounds Write 		CVE-2024-22012 cpe:2.3:o:google:android:-:* 2024-03-13 06:15
2024-02-8 		Show GitHub Exploit DB Packet Storm
2 4.4
- 		MEDIUM
Local 		In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for expl… CWE-190
 Integer Overflow or Wraparound 		CVE-2024-20016 cpe:2.3:o:google:android:14.0:*
cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:*
cpe:2.3:o:goog… 		2024-02-9 11:07
2024-02-5 		Show GitHub Exploit DB Packet Storm
3 7.8
- 		HIGH
Local 		In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interactio… NVD-CWE-noinfo
CVE-2024-20015 cpe:2.3:o:google:android:14.0:*
cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:* 		2024-02-9 11:06
2024-02-5 		Show GitHub Exploit DB Packet Storm
4 6.7
- 		MEDIUM
Local 		In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not… CWE-787
 Out-of-bounds Write 		CVE-2024-20013 cpe:2.3:o:google:android:14.0:*
cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:*
cpe:2.3:o:goog… 		2024-02-9 11:06
2024-02-5 		Show GitHub Exploit DB Packet Storm
5 6.7
- 		MEDIUM
Local 		In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not nee… CWE-843
Type Confusion 		CVE-2024-20012 cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:* 		2024-02-9 11:06
2024-02-5 		Show GitHub Exploit DB Packet Storm
6 9.8
- 		CRITICAL
Network 		In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-20011 cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:*
cpe:2.3:o:google:android:11.0:* 		2024-02-9 11:06
2024-02-5 		Show GitHub Exploit DB Packet Storm
7 6.7
- 		MEDIUM
Local 		In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not nee… CWE-843
Type Confusion 		CVE-2024-20010 cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:*
cpe:2.3:o:google:android:11.0:* 		2024-02-9 11:05
2024-02-5 		Show GitHub Exploit DB Packet Storm
8 8.8
- 		HIGH
Network 		In alac decoder, there is a possible out of bounds write due to an incorrect error handling. This could lead to remote escalation of privilege with no additional execution privileges needed. User int… CWE-787
 Out-of-bounds Write 		CVE-2024-20009 cpe:2.3:o:google:android:14.0:*
cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:* 		2024-02-9 11:05
2024-02-5 		Show GitHub Exploit DB Packet Storm
9 7.5
- 		HIGH
Network 		In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is … CWE-362
CWE-787
Race Condition
 Out-of-bounds Write 		CVE-2024-20007 cpe:2.3:o:google:android:14.0:*
cpe:2.3:o:google:android:13.0:*
cpe:2.3:o:google:android:12.0:* 		2024-02-9 11:05
2024-02-5 		Show GitHub Exploit DB Packet Storm
10 6.7
- 		MEDIUM
Local 		In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed … CWE-787
 Out-of-bounds Write 		CVE-2024-20006 cpe:2.3:o:google:android:11.0:* 2024-02-9 11:04
2024-02-5 		Show GitHub Exploit DB Packet Storm