Software Detail

Software Informaton Top

Operating Systems

Software Detail

Android

Number Of NVD

6838

CRITICAL

484

HIGH

2986

MEDIUM

3124

LOW

236

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	GPL v2 LGPL 2.1+ Mobile Google Apache License v2.0

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
6771	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
6772	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	311	812	67
6773	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
6774	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
6775	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
6776	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
6777	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
6778	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
6779	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
6780	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
6781	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
6782	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
6783	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
6784	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1558	2312	204
6785	Android 9.0	9.0			109	441	323	34
6786	Android 7.2	7.2			16	61	79	9
6787	Android 12.1	12.1			15	229	224	23
6788	Android 12.0l	12.0l			0	28	68	9
6789	Android 12.0	12.0			43	447	1159	104
6790	Android 11.0	11.0			58	636	1364	107
6791	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or less	Update date Published date	Show Affected	Exploit PoC Search
6771	- 9.3	HIGH	The Region_createFromParcel function in core/jni/android/graphics/Region.cpp in Region in Android before 5.1.1 LMY48M does not check the return values of certain read operations, which allows attacke…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3849	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6772	- 6.8	MEDIUM	The Parcel::appendFrom function in libs/binder/Parcel.cpp in Binder in Android before 5.1.1 LMY48M does not consider parcel boundaries during identification of binder objects in an append operation, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3845	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6773	- 6.8	MEDIUM	The getProcessRecordLocked method in services/core/java/com/android/server/am/ActivityManagerService.java in ActivityManager in Android before 5.1.1 LMY48I allows attackers to trigger incorrect proce…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3844	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6774	- 9.3	HIGH	The SIM Toolkit (STK) framework in Android before 5.1.1 LMY48I allows attackers to (1) intercept or (2) emulate unspecified Telephony STK SIM commands via an application that sends a crafted Intent, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3843	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6775	- 9.3	HIGH	Multiple heap-based buffer overflows in libeffects in the Audio Policy Service in mediaserver in Android before 5.1.1 LMY48I allow attackers to execute arbitrary code via a crafted application, aka i…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3842	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6776	- 9.3	HIGH	The OpenSSLX509Certificate class in org/conscrypt/OpenSSLX509Certificate.java in Android before 5.1.1 LMY48I improperly includes certain context data during serialization and deserialization, which a…	CWE-20 Improper Input Validation	CVE-2015-3837	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6777	- 10.0	HIGH	The Parse_wave function in arm-wt-22k/lib_src/eas_mdls.c in the Sonivox DLS-to-EAS converter in Android before 5.1.1 LMY48I does not reject a negative value for a certain size field, which allows rem…	CWE-189 Numeric Errors	CVE-2015-3836	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6778	- 9.3	HIGH	Buffer overflow in the OMXNodeInstance::emptyBuffer function in omx/OMXNodeInstance.cpp in libstagefright in Android before 5.1.1 LMY48I allows attackers to execute arbitrary code via a crafted appli…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3835	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6779	- 10.0	HIGH	Multiple integer overflows in the BnHDCP::onTransact function in media/libmedia/IHDCP.cpp in libstagefright in Android before 5.1.1 LMY48I allow attackers to execute arbitrary code via a crafted appl…	CWE-189 Numeric Errors	CVE-2015-3834	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm

6780	- 4.3	MEDIUM	The getRunningAppProcesses function in services/core/java/com/android/server/am/ActivityManagerService.java in Android before 5.1.1 LMY48I allows attackers to bypass intended getRecentTasks restricti…	CWE-284 Improper Access Control	CVE-2015-3833	cpe:2.3:o:google:android::	5.1	2024-11-21 11:29 2015-10-1	Show	GitHub Exploit DB Packet Storm