Software Detail

Software Informaton Top

Operating Systems

Software Detail

Android

Number Of NVD

6838

CRITICAL

484

HIGH

2986

MEDIUM

3124

LOW

236

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	Mobile Google Apache License v2.0 GPL v2 LGPL 2.1+

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
51	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
52	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	311	812	67
53	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
54	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
55	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
56	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
57	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
58	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
59	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
60	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
61	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
62	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
63	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
64	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1558	2312	204
65	Android 9.0	9.0			109	441	323	34
66	Android 7.2	7.2			16	61	79	9
67	Android 12.1	12.1			15	229	224	23
68	Android 12.0l	12.0l			0	28	68	9
69	Android 12.0	12.0			43	447	1159	104
70	Android 11.0	11.0			58	636	1364	107
71	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
51	7.8 -	HIGH Local	In several functions of DescramblerImpl.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges neede…	CWE-667 Improper Locking	CVE-2018-9344	cpe:2.3:o:google:android:8.1:*	2024-11-23 01:24 2024-11-20	Show	GitHub Exploit DB Packet Storm

52	7.8 -	HIGH Local	In impeg2d_mc_fullx_fully of impeg2d_mc.c there is a possible out of bound write due to missing bounds check. This could lead to remote arbitrary code execution with no additional execution privilege…	CWE-787 Out-of-bounds Write	CVE-2018-9341	cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…	2024-11-23 01:14 2024-11-20	Show	GitHub Exploit DB Packet Storm

53	5.5 -	MEDIUM Local	In ResStringPool::setTo of ResourceTypes.cpp, it's possible for an attacker to control the value of mStringPoolSize to be out of bounds, causing information disclosure.	CWE-125 Out-of-bounds Read	CVE-2018-9340	cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…	2024-11-23 01:05 2024-11-20	Show	GitHub Exploit DB Packet Storm

54	7.8 -	HIGH Local	In writeTypedArrayList and readTypedArrayList of Parcel.java, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with no additional ex…	CWE-843 Type Confusion	CVE-2018-9339	cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:*	2024-11-23 01:02 2024-11-20	Show	GitHub Exploit DB Packet Storm

55	7.8 -	HIGH Local	In ResStringPool::setTo of ResourceTypes.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution priv…	CWE-787 Out-of-bounds Write	CVE-2018-9338	cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:* cpe:2.3:o:google:android:7.1.2:* cpe:2.3:o:googl…	2024-11-23 00:48 2024-11-20	Show	GitHub Exploit DB Packet Storm

56	5.5 -	MEDIUM Local	In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let's zero-…	CWE-908 Use of Uninitialized Resource	CVE-2024-50302	cpe:2.3:o:google:android:-:*	2025-03-8 07:07 2024-11-19	Show	GitHub Exploit DB Packet Storm

57	5.5 -	MEDIUM Local	In the autofill service, the package name that is provided by the app process is trusted inappropriately. This could lead to information disclosure with no additional execution privileges needed. U…	NVD-CWE-noinfo	CVE-2017-13227	cpe:2.3:o:google:android:8.1:* cpe:2.3:o:google:android:8.0:*	2024-11-21 02:35 2024-11-15	Show	GitHub Exploit DB Packet Storm

58	7.8 -	HIGH Local	In PMRWritePMPageList of pmr.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution p…	CWE-787 Out-of-bounds Write	CVE-2024-23715	cpe:2.3:o:google:android:-:*	2024-11-21 02:35 2024-11-14	Show	GitHub Exploit DB Packet Storm

59	7.8 -	HIGH Local	In PVRSRVRGXKickTA3DKM of rgxta3d.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional e…	NVD-CWE-noinfo	CVE-2023-35686	cpe:2.3:o:google:android:-:*	2024-11-21 02:35 2024-11-14	Show	GitHub Exploit DB Packet Storm

60	7.8 -	HIGH Local	In DevmemIntChangeSparse of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no a…	NVD-CWE-noinfo	CVE-2023-35659	cpe:2.3:o:google:android:-:*	2024-11-21 02:35 2024-11-14	Show	GitHub Exploit DB Packet Storm