Google Android Vulnerabilities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Last Year

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Version

7.0783
7.1.1767
8.0756
8.1744
9.0719

Grouping all affected versions of a specific product helps to determine existing issues. This makes it possible to determine vendors and products which need attention when it comes to remediations.

Remediation

Official Fix5293
Temporary Fix0
Workaround1
Unavailable7
Not Defined364

Vendors and researchers are eager to find countermeasures to mitigate security vulnerabilities. These can be distinguished between multiple forms and levels of remediation which influence risks differently.

Exploitability

High9
Functional2
Proof-of-Concept98
Unproven25
Not Defined5531

Researcher and attacker which are looking for security vulnerabilities try to exploit them for academic purposes or personal gain. The level and quality of exploitability can be distinguished to determine simplicity and strength of attacks.

Access Vector

Not Defined0
Physical61
Local3645
Adjacent215
Network1744

The approach a vulnerability it becomes important to use the expected access vector. This is typically via the network, local, or physically even.

Authentication

Not Defined0
High358
Low2885
None2422

To exploit a vulnerability a certail level of authentication might be required. Vulnerabilities without such a requirement are much more popular.

User Interaction

Not Defined0
Required1210
None4455

Some attack scenarios require some user interaction by a victim. This is typical for phishing, social engineering and cross site scripting attacks.

C3BM Index

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

Last Year

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base

≤10
≤21
≤360
≤4467
≤5746
≤61169
≤71489
≤81138
≤9445
≤10150

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤27
≤359
≤4520
≤5717
≤61233
≤71544
≤81056
≤9387
≤10142

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤22
≤3217
≤4917
≤5625
≤62065
≤7366
≤81174
≤9135
≤10164

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤39
≤486
≤5285
≤6844
≤7732
≤82034
≤9211
≤10596

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤40
≤52
≤61
≤70
≤83
≤93
≤103

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

Exploit 0-day

<1k24
<2k1
<5k8
<10k247
<25k1941
<50k1754
<100k1473
≥100k217

The moderation team is working with the threat intelligence team to determine prices for exploits. Our unique algorithm is used to identify the 0-day prices for an exploit, before it got distributed or became public. Calculated prices are aligned to prices disclosed by vulnerability broker and compared to prices we see on exploit markets.

Exploit Today

<1k1190
<2k515
<5k1779
<10k1166
<25k811
<50k164
<100k40
≥100k0

The 0-day prices do not consider time-relevant factors. The today price does reflect price impacts like disclosure of vulnerability details, alternative exploits, availability of countermeasures. These dynamic aspects might decrease the exploit prices over time. Under certain circumstances this happens very fast.

Exploit Market Volume

Our unique calculation of exploit prices makes it possible to forecast the expected exploit market volume. The calculated prices for all possible 0-day expoits are cumulated for this task. Comparing the volume to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

Last Year

Our unique calculation of exploit prices makes it possible to forecast the expected exploit market volume. The calculated prices for all possible 0-day expoits are cumulated for this task. Comparing the volume to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

🔴 CTI Activities

Our unique Cyber Threat Intelligence aims to determine the ongoing research of actors to anticipiate their acitivities. Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and exchanges on social media makes it possible to identify planned attacks. Monitored actors and activities are classified whether they are offensive or defensive. They are also weighted as some actors are well-known for certain products and technologies. And some of their disclosures might contain more or less details about technical aspects and personal context. The world map highlights active actors in real-time.

Affected Versions (100): 0.c, 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.c, 2.0, 2.0.1, 2.1, 2.2, 2.2.1, 2.2.2, 2.2.3, 2.3, 2.3.1, 2.3.2, 2.3.3, 2.3.4, 2.3.5, 2.3.6, 2.3.7, 2.37, 2.c, 2.java, 3.0, 3.1, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.2.5, 3.2.6, 3.10, 3.18, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.1, 4.1.1, 4.1.2, 4.2, 4.2.1, 4.2.2, 4.3, 4.3.1, 4.4, 4.4.1, 4.4.2, 4.4.3, 4.4.4, 5.0, 5.0.1, 5.0.2, 5.1, 5.1.1, 5.1.1 LMY49C, 6.0, 6.0.1, 6.cpp, 7.0, 7.1, 7.1.1, 7.1.2, 8., 8.0, 8.1, 9, 9.0, 10, 10.0, 11, 11.0, 12, 12.0, 12L, 13, 13.0, 14, 18.0.1, 101.c, 1012, 20200335, 20200619, 21280404, 21500102, 23970013, 23970138, 24000736, 24200139, 25930405, M3-rc37a, M5-rc14, SoC, kernel

Link to Product Website: https://www.google.com/

Software Type: Smartphone Operating System

PublishedBaseTempVulnerability0dayTodayExpRemCTICVE
02/16/20245.35.1Google Android NotificationAccessConfirmationActivity.java onCreate Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-0021
02/16/20245.35.1Google Android Codec2BufferUtils.cpp ConvertRGBToPlanarYUV out-of-bounds write$5k-$25k$0-$5kNot DefinedOfficial Fix0.06CVE-2024-0023
02/16/20243.33.2Google Android AppOpsControllerImpl.java setListening information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.08CVE-2024-0019
02/16/20245.35.1Google Android ColorConverter.cpp convertYUV420Planar16ToY410 out-of-bounds write$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2024-0018
02/16/20243.33.2Google Android NotificationSoundPreference.java onActivityResult information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-0020
02/16/20243.33.2Google Android CameraActivity.java shouldUseNoOpLocation information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-0017
02/16/20243.53.4Google Android information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.06CVE-2024-0016
02/16/20245.35.1Google Android DreamService.java convertToComponentName redirect$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-0015
02/16/20243.33.2Google Android ShimConverter.cpp convertSubgraphFromHAL information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.09CVE-2023-40085
02/16/20245.35.1Google Android devicemem_server.c DevmemtUnmapPMR use after free$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-21165
02/16/20245.35.1Google Android StatsService.cpp readLogs use after free$5k-$25k$5k-$25kNot DefinedOfficial Fix0.06CVE-2023-40115
02/16/20243.33.2Google Android information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.09CVE-2023-40124
02/16/20245.35.1Google Android MtpFfsHandle.cpp out-of-bounds write$5k-$25k$5k-$25kNot DefinedOfficial Fix0.02CVE-2023-40114
02/16/20245.35.1Google Android MediaSessionRecord.java setMediaButtonReceiver access control$5k-$25k$5k-$25kNot DefinedOfficial Fix0.02CVE-2023-40111
02/16/20245.35.1Google Android MtpPacket.cpp out-of-bounds write$5k-$25k$0-$5kNot DefinedOfficial Fix0.11CVE-2023-40110
02/16/20245.35.1Google Android ARTPWriter.cpp ARTPWriter use after free$5k-$25k$5k-$25kNot DefinedOfficial Fix0.02CVE-2023-40107
02/16/20245.35.1Google Android NotificationManagerService.java sanitizeSbn Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-40106
02/16/20243.33.2Google Android Message Data information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-40113
02/16/20243.33.2Google Android ipp.c ippSetValueTag information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-40112
02/16/20245.35.1Google Android UsbConfiguration.java createFromParcel permission$5k-$25k$5k-$25kNot DefinedOfficial Fix0.00CVE-2023-40109
02/16/20243.33.2Google Android ActivityManagerService.java backupAgentCreated information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-40105
02/16/20243.73.6Google Android ca-certificates information disclosure$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2023-40104
02/16/20245.35.1Google Android SystemStatusAnimationSchedulerImpl.kt removePersistentDot race condition$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-0041
02/16/20245.35.1Google Android AccessibilityManagerService.java injectInputEventToInputFilter permission$5k-$25k$5k-$25kNot DefinedOfficial Fix0.07CVE-2024-0038
02/16/20245.35.1Google Android ActivityTaskManagerService.java startNextMatchingActivity Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-0036
02/16/20245.35.1Google Android Dns64Configuration.cpp discovery_thread use after free$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-40100
02/16/20243.33.2Google Android SaveUi.java applyCustomDescription information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-0037
02/16/20244.34.1Google Android MtpPacket.cpp setParameter information disclosure$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2024-0040
02/16/20245.35.1Google Android TileLifecycleManager.java onNullBinding Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.08CVE-2024-0035
02/16/20245.35.1Google Android ashmem-dev.cpp heap-based overflow$5k-$25k$5k-$25kNot DefinedOfficial Fix0.04CVE-2024-0033
02/16/20245.35.1Google Android FileSystemProvider.java queryChildDocuments input validation$5k-$25k$5k-$25kNot DefinedOfficial Fix0.02CVE-2024-0032
02/16/20243.33.2Google Android Device Policy information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-0029
02/16/20245.35.1Google Android UpdateFetcher.java startInstall logic error$5k-$25k$0-$5kNot DefinedOfficial Fix0.12CVE-2024-0014
02/16/20243.33.2Google Android btif_gatt_util.cc btif_to_bta_response information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-0030
02/16/20243.33.2Google Android SaveUi.java applyCustomDescription information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-40122
02/16/20243.33.2Google Android PDF Output information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-40093
02/16/20245.35.1Google Android BackgroundLaunchProcessController Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-0034
02/16/20246.36.0Google Android att_protocol.cc attp_build_read_by_type_value_cmd out-of-bounds write$25k-$100k$5k-$25kNot DefinedOfficial Fix0.92CVE-2024-0031
02/07/20245.35.1Google Android out-of-bounds write$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-22012
12/11/20237.67.5Google Android U-Boot Privilege Escalation$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2023-48425
12/11/20237.67.5Google Android U-Boot Shell Privilege Escalation$25k-$100k$5k-$25kNot DefinedOfficial Fix0.02CVE-2023-48424
12/11/20237.57.4Google Android KeyChainActivity App permission$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-48417
12/11/20237.67.5Google Android BCB Privilege Escalation$25k-$100k$5k-$25kNot DefinedOfficial Fix0.03CVE-2023-6181
12/08/20235.55.5Google Android Factory Reset information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-48407
12/08/20235.55.4Google Android Modem denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-48406
12/08/20234.24.0Google Android Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-48405
12/08/20236.56.4Google Android ppcfw.c ppcfw_enable permission$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-48402
12/08/20235.15.1Google Android use after free$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-48420
12/08/20235.45.3Google Android Pixel Camera Driver use after free$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-48414
12/08/20234.44.3Google Android mali_gralloc_buffer.h private_handle_t information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-48412

5615 more entries are not shown

more entries by Google

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!