Software Detail

Software Informaton Top

Operating Systems

Software Detail

Android

Number Of NVD

6839

CRITICAL

484

HIGH

2987

MEDIUM

3124

LOW

236

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	Mobile Google Apache License v2.0 GPL v2 LGPL 2.1+

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
811	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
812	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	311	812	67
813	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
814	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
815	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
816	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
817	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
818	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
819	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
820	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
821	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
822	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
823	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
824	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1559	2312	204
825	Android 9.0	9.0			109	441	323	34
826	Android 7.2	7.2			16	61	79	9
827	Android 12.1	12.1			15	229	224	23
828	Android 12.0l	12.0l			0	28	68	9
829	Android 12.0	12.0			43	447	1159	104
830	Android 11.0	11.0			58	636	1364	107
831	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
811	7.5 -	HIGH Network	In DMPixelLogger_ProcessDmCommand of DMPixelLogger.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execu…	CWE-125 Out-of-bounds Read	CVE-2023-35694	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-07-13	Show	GitHub Exploit DB Packet Storm

812	6.7 -	MEDIUM Local	In incfs_kill_sb of fs/incfs/vfs.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User inter…	CWE-416 Use After Free	CVE-2023-35693	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-07-13	Show	GitHub Exploit DB Packet Storm

813	7.2 -	HIGH Network	there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed. User interaction is not needed for exploitat…	CWE-125 Out-of-bounds Read	CVE-2023-35691	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-07-13	Show	GitHub Exploit DB Packet Storm

814	6.7 -	MEDIUM Local	In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privil…	CWE-667 Improper Locking	CVE-2023-21400	cpe:2.3:o:google:android:-:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm

815	7.8 -	HIGH Local	there is a possible way to bypass cryptographic assurances due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User inte…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2023-21399	cpe:2.3:o:google:android:-:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm

816	3.1 -	LOW Network	In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying the microphone privacy indicator due to a race condition. This could lead to false user expectations. …	CWE-362 Race Condition	CVE-2023-21262	cpe:2.3:o:google:android:13.0:* cpe:2.3:o:google:android:12.1:* cpe:2.3:o:google:android:12.0:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm

817	7.8 -	HIGH Local	In updateSettingsInternalLI of InstallPackageHelper.java, there is a possible way to sideload an app in the work profile due to a missing permission check. This could lead to local escalation of priv…	CWE-862 Missing Authorization	CVE-2023-21257	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm

818	7.8 -	HIGH Local	In SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities via Settings due to a logic error in the code. This could lead to local escalation of privilege with no additi…	NVD-CWE-noinfo	CVE-2023-21256	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm

819	7.8 -	HIGH Local	In multiple functions of binder.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2023-21255	cpe:2.3:o:google:android:-:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm

820	7.8 -	HIGH Local	In getCurrentState of OneTimePermissionUserManager.java, there is a possible way to hold one-time permissions after the app is being killed due to a logic error in the code. This could lead to local …	NVD-CWE-noinfo	CVE-2023-21254	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-07-13	Show	GitHub Exploit DB Packet Storm