Software Detail

Software Informaton Top

Operating Systems

Software Detail

Android

Number Of NVD

6845

CRITICAL

484

HIGH

2993

MEDIUM

3124

LOW

236

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	Apache License v2.0 GPL v2 LGPL 2.1+ Mobile Google

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
971	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
972	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	317	812	67
973	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
974	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
975	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
976	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
977	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
978	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
979	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
980	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
981	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
982	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
983	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
984	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1565	2312	204
985	Android 9.0	9.0			109	441	323	34
986	Android 7.2	7.2			16	61	79	9
987	Android 12.1	12.1			15	229	224	23
988	Android 12.0l	12.0l			0	28	68	9
989	Android 12.0	12.0			43	447	1159	104
990	Android 11.0	11.0			58	636	1364	107
991	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
971	7.5 -	HIGH Network	In xmlParseTryOrFinish of parser.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges need…	CWE-125 Out-of-bounds Read	CVE-2023-21180	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

972	7.8 -	HIGH Local	In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. This could lead to local escalation of privilege wi…	NVD-CWE-noinfo	CVE-2023-21179	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

973	4.1 -	MEDIUM Local	In installKey of KeyUtil.cpp, there is a possible failure of file encryption due to a race condition. This could lead to local information disclosure with System execution privileges needed. User int…	CWE-362 Race Condition	CVE-2023-21178	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

974	4.4 -	MEDIUM Local	In list_key_entries of utils.rs, there is a possible way to disable user credentials due to resource exhaustion. This could lead to local denial of service with System execution privileges needed. Us…	CWE-400 Uncontrolled Resource Consumption	CVE-2023-21176	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

975	7.8 -	HIGH Local	In onCreate of DataUsageSummary.java, there is a possible method for a guest user to enable or disable mobile data due to a permissions bypass. This could lead to local escalation of privilege with n…	NVD-CWE-noinfo	CVE-2023-21175	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

976	5.5 -	MEDIUM Local	In multiple methods of DataUsageList.java, there is a possible way to learn about admin user's network activities due to a missing permission check. This could lead to local information disclosure wi…	CWE-862 Missing Authorization	CVE-2023-21173	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

977	7.8 -	HIGH Local	In multiple functions of WifiCallingSettings.java, there is a possible way to change calling preferences for the admin user due to a permissions bypass. This could lead to local escalation of privile…	NVD-CWE-Other	CVE-2023-21172	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

978	6.7 -	MEDIUM Local	In verifyInputEvent of InputDispatcher.cpp, there is a possible way to conduct click fraud due to side channel information disclosure. This could lead to local escalation of privilege with System exe…	NVD-CWE-noinfo	CVE-2023-21171	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

979	4.4 -	MEDIUM Local	In executeSetClientTarget of ComposerCommandEngine.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privi…	CWE-125 Out-of-bounds Read	CVE-2023-21170	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm

980	4.4 -	MEDIUM Local	In inviteInternal of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User…	CWE-125 Out-of-bounds Read	CVE-2023-21169	cpe:2.3:o:google:android:13.0:*	2024-11-21 16:42 2023-06-29	Show	GitHub Exploit DB Packet Storm