Software Detail

Software Informaton Top

Operating Systems

Software Detail

Android

Number Of NVD

6838

CRITICAL

484

HIGH

2986

MEDIUM

3124

LOW

236

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	GPL v2 LGPL 2.1+ Mobile Google Apache License v2.0

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
81	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
82	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	311	812	67
83	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
84	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
85	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
86	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
87	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
88	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
89	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
90	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
91	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
92	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
93	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
94	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1558	2312	204
95	Android 9.0	9.0			109	441	323	34
96	Android 7.2	7.2			16	61	79	9
97	Android 12.1	12.1			15	229	224	23
98	Android 12.0l	12.0l			0	28	68	9
99	Android 12.0	12.0			43	447	1159	104
100	Android 11.0	11.0			58	636	1364	107
101	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
81	7.8 -	HIGH Local	In vring_init of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege with no addi…	CWE-787 Out-of-bounds Write	CVE-2024-47035	cpe:2.3:o:google:android:-:*	2024-10-31 09:05 2024-10-25	Show	GitHub Exploit DB Packet Storm

82	7.8 -	HIGH Local	In valid_address of syscall.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed…	CWE-125 Out-of-bounds Read	CVE-2024-47041	cpe:2.3:o:google:android:-:*	2024-11-5 07:16 2024-10-25	Show	GitHub Exploit DB Packet Storm

83	4.4 -	MEDIUM Local	In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed.	CWE-476 NULL Pointer Dereference	CVE-2024-39440	cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:*	2024-10-18 02:33 2024-10-9	Show	GitHub Exploit DB Packet Storm

84	4.4 -	MEDIUM Local	In DRM service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.	CWE-787 Out-of-bounds Write	CVE-2024-39439	cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:*	2024-10-18 02:32 2024-10-9	Show	GitHub Exploit DB Packet Storm

85	6.7 -	MEDIUM Local	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39438	cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:*	2024-10-18 02:19 2024-10-9	Show	GitHub Exploit DB Packet Storm

86	6.7 -	MEDIUM Local	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39437	cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:*	2024-10-18 02:18 2024-10-9	Show	GitHub Exploit DB Packet Storm

87	6.7 -	MEDIUM Local	In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed.	CWE-77 Command Injection	CVE-2024-39436	cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:*	2024-10-18 02:16 2024-10-9	Show	GitHub Exploit DB Packet Storm

88	4.9 -	MEDIUM Network	In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is …	CWE-125 Out-of-bounds Read	CVE-2024-20102	cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:*	2024-10-11 03:20 2024-10-7	Show	GitHub Exploit DB Packet Storm

89	4.4 -	MEDIUM Local	In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed …	CWE-125 Out-of-bounds Read	CVE-2024-20097	cpe:2.3:o:google:android:12.0:*	2024-10-27 12:35 2024-10-7	Show	GitHub Exploit DB Packet Storm

90	4.4 -	MEDIUM Local	In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed f…	CWE-125 Out-of-bounds Read	CVE-2024-20096	cpe:2.3:o:google:android:15.0:* cpe:2.3:o:google:android:14.0:* cpe:2.3:o:google:android:13.0:* cpe:2.3:o:goog…	2024-10-27 12:35 2024-10-7	Show	GitHub Exploit DB Packet Storm