Smartphone Operating System Vulnérabilités

Chronologie

Fournisseur

Produit

Google Android4499
Apple iOS2723
Apple iPadOS713
Huawei Smartphone283
Samsung Mobile Devices244

Contre-mesures

Official Fix7317
Temporary Fix0
Workaround25
Unavailable33
Not Defined1007

Exploitabilité

High47
Functional16
Proof-of-Concept430
Unproven184
Not Defined7705

Vecteur d'accès

Not Defined0
Physical246
Local3633
Adjacent554
Network3949

Authentification

Not Defined0
High158
Low3099
None5125

Interaction de l'utilisateur

Not Defined0
Required2383
None5999

C3BM Index

CVSSv3 Base

≤10
≤25
≤3101
≤4638
≤5878
≤61649
≤71849
≤82030
≤9745
≤10487

CVSSv3 Temp

≤10
≤213
≤3106
≤4697
≤5956
≤61845
≤72055
≤81670
≤9686
≤10354

VulDB

≤10
≤28
≤3201
≤41059
≤5883
≤62352
≤71140
≤81897
≤9330
≤10512

NVD

≤10
≤20
≤354
≤4107
≤5300
≤6922
≤7818
≤82276
≤9620
≤10751

CNA

≤10
≤24
≤31
≤48
≤54
≤63
≤77
≤87
≤92
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤91
≤103

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k187
<2k143
<5k409
<10k395
<25k1351
<50k2304
<100k2124
≥100k1469

Exploiter aujourd'hui

<1k1660
<2k395
<5k1329
<10k1763
<25k2581
<50k590
<100k64
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (223): Apple iOS, Apple IOS, Apple iPadOS, Apple iPhone, Apple iPhone Configuration Web Utility, Apple Iphone Os, Apple iPhone OS, Apple iPod, Apple MacOS X, Apple Mac OS X, Apple Safari, Apple TV, Apple watchOS, Google Android, Google Android Browser, Google Android SDK, Google Android SDK Platform Tools, GWT Mobile PhoneGap Showcase, HTC HD2 Mobile Phone, Huawei ALE Smartphone, Huawei Berkeley Smart Phone, Huawei Changxiang 7S, Huawei Changxiang 8 Plus, Huawei CloudEngine 12800, Huawei Crowdtest, Huawei CX600, Huawei G8, Huawei GT3, Huawei HiAPP, Huawei HiCinema, Huawei HiHealthApp, Huawei Hima-L29C, Huawei HiSuite, Huawei HiWallet, Huawei Honor20, Huawei Honor20 Pro, Huawei HonorMagic2, Huawei HonorV20, Huawei Honor 5A, Huawei Honor 5C, Huawei Honor 6, Huawei Honor 6 Plus, Huawei Honor 7, Huawei Honor 8, Huawei Honor 8 Lite, Huawei Honor 9, Huawei Honor 9i, Huawei Honor 9 Lite, Huawei Honor 10, Huawei Honor 20 Pro, Huawei Honor Magic2, Huawei Honor Magic 2, Huawei Honor V8, Huawei Honor V9, Huawei Honor V10, Huawei HuaweiWear, Huawei Huawei Pay, Huawei HwCloudDrive, Huawei HwParentControl, Huawei HwParentControlParent, Huawei HwPhoneFinder, Huawei KNT, Huawei Laya-AL00EP, Huawei Mate8, Huawei Mate 7, Huawei Mate 8, Huawei Mate 8 NXT-AL, Huawei Mate 9, Huawei Mate 9 Pro, Huawei Mate 10, Huawei Mate 10 Pro, Huawei Mate 20, Huawei Mate 20 Pro, Huawei Mate 20 RS, Huawei Mate 20 X, Huawei Mate 30, Huawei Mate 30 Pro, Huawei Mate RS, Huawei Mate S, Huawei MediaPad M3, Huawei Mobile Phone, Huawei NE40E, Huawei NE5000E, Huawei Nova 2, Huawei Nova 2 Plus, Huawei Nova 4, Huawei OxfordS-AN00A, Huawei P-smart, Huawei P2-6011, Huawei P7, Huawei P7-l10, Huawei P8, Huawei P8 Lite, Huawei P9, Huawei P9 Lite, Huawei P9 Plus, Huawei P10, Huawei P10 Plus, Huawei P20, Huawei P20 Pro, Huawei P30, Huawei P30 Pro, Huawei P40, Huawei PCManager, Huawei PC Smart Full Scene, Huawei PLK, Huawei Policy Center, Huawei Prague-AL00A, Huawei Prague-AL00B, Huawei Prague-AL00C, Huawei Prague-TL00A, Huawei Prague-TL10A, Huawei Princeton-AL10B, Huawei Product, Huawei Products, Huawei PTN 6900-2-M8, Huawei SHOTX, Huawei Skytone, Huawei Smarthome, Huawei Smartphone, Huawei Smartphone OxfordS-AN00A, Huawei Smart Phone, Huawei Smart Phones Moana-AL00B, Huawei Tony-AL00B, Huawei Tony-TL00B, Huawei Toronto, Huawei V20, Huawei Y6 II, Huawei Y9 2018, Huawei Yale-L61A, Huawei Yale-TL00B, Huawei YaleP-AL10B, IBM Tivoli Endpoint Manager Mobile Device Management, Lenovo VIBE Mobile Phone, LG Mobile Device, LG Mobile Devices, LG mobile phone, LG Smartphone, LG Wing Mobile Devices, MobileIron Virtual Smartphone Platform, Mobile Device Monitoring Service, Nokia 1280, Nokia 3210, Nokia 6131 Nfc, Nokia 6210 Handset, Nokia 6310i, Nokia N70, Nokia N95, Nokia NetAct, Nokia Nokia PC Suite, Nokia Symbian, Nokia Symbian S60 Browser, Nokia Networks @vantage Commander, Okb.co.jp Smartphone Passbook, Oppo Smart Phone, Oracle CRM Gateway for Mobile Devices, Oracle Policy Automation for Mobile Devices, Prague Smart Phone, Qualcomm Mobile Devices, Research In Motion Limited BlackBerry 7270, RIM BlackBerry 7230, RIM BlackBerry 8800, Samsung Exynos 4412, Samsung Galaxy, Samsung Galaxy A3, Samsung GALAXY Apps, Samsung Galaxy Gear, Samsung Galaxy Note 2, Samsung Galaxy Note 4, Samsung Galaxy Note 5, Samsung Galaxy Note 8, Samsung Galaxy S, Samsung Galaxy S2 I9100XWKI4, Samsung Galaxy S3, Samsung Galaxy S3 i9305, Samsung Galaxy S3 Plugin, Samsung Galaxy S4, Samsung Galaxy S5, Samsung Galaxy S6, Samsung Galaxy S6 Edge, Samsung Galaxy S8+, Samsung Galaxy S8, Samsung Galaxy S8 Plus, Samsung Galaxy S9, Samsung Galaxy S10, Samsung Galaxy S20, Samsung Galaxy S22, Samsung Galaxy Store, Samsung Galaxy Themes, Samsung Galaxy Watch3 Plugin, Samsung Galaxy Watch3 PlugIn, Samsung Galaxy Watch Plugin, Samsung Galaxy Watch PlugIn, Samsung J2 Pro, Samsung Mobile Device, Samsung Mobile Devices, Samsung Mobile Phone, Samsung Nexus, Samsung Note, Samsung Notes, Samsung Note 3, Samsung Note 10, Samsung Note 20, Samsung Smartphone, Samsung Smart Phone, Samsung Tab A, Smartphone Passbook, SoftBank Android smartphone, Sony Xperia L1, Sony Xperia Touch, Sony Xperia XZs, Sony Ericsson K660i, Sony Ericsson K700i, Sony Ericsson P900 Beamer, Sony Ericsson T60, Sony Ericsson W800i, Sony Ericsson W810i, Ssamsung Notes, Symbian OS S60, Xiaomi Millet Mobile Phone, Xiaomi Mobile Phone MIUI, Xiaomi Smart Phone, ZTE Mobile Phone

PubliéBaseTempVulnérabilitéProduitExpConCTICVE
16/06/20225.35.1Google Android nanopb Local Privilege EscalationAndroidNot DefinedOfficial Fix0.41CVE-2022-20203
15/06/20225.35.1Google Android DevicePolicyManagerService.java elévation de privilègesAndroidNot DefinedOfficial Fix0.35CVE-2022-20138
15/06/20225.35.1Google Android GattServiceConfig.java elévation de privilègesAndroidNot DefinedOfficial Fix0.26CVE-2022-20207
15/06/20224.24.0Google Android InstalldNativeService.cpp getAppSize divulgation de l'informationAndroidNot DefinedOfficial Fix0.26CVE-2022-20201
15/06/20223.33.2Google Android Keystore Library dénie de serviceAndroidNot DefinedOfficial Fix0.91CVE-2022-20195
15/06/20225.35.1Google Android ChooseLockGeneric.java onCreate elévation de privilègesAndroidNot DefinedOfficial Fix0.32CVE-2022-20194
15/06/20225.35.1Google Android PermissionUsageHelper.java getUniqueUsagesWithLabels elévation de privilègesAndroidNot DefinedOfficial Fix0.26CVE-2022-20193
15/06/20225.35.1Google Android WindowManagerService.java grantEmbeddedWindowFocus elévation de privilègesAndroidNot DefinedOfficial Fix0.32CVE-2022-20192
15/06/20225.35.1Google Android nfa_dm_main.cc nfa_dm_check_set_config buffer overflowAndroidNot DefinedOfficial Fix0.26CVE-2022-20147
15/06/20225.35.1Google Android AvatarPhotoController.java Local Privilege EscalationAndroidNot DefinedOfficial Fix0.29CVE-2022-20144
15/06/20225.35.1Google Android label_backends_android.c closef buffer overflowAndroidNot DefinedOfficial Fix0.32CVE-2021-39806
15/06/20222.32.2Google Android cppbor_parse.cpp parseRecursively divulgation de l'informationAndroidNot DefinedOfficial Fix0.32CVE-2022-20208
15/06/20223.33.2Google Android NotificationManagerService.java setPackageOrComponentEnabled divulgation de l'informationAndroidNot DefinedOfficial Fix0.35CVE-2022-20206
15/06/20223.33.2Google Android FileUtil.java isFileUri divulgation de l'informationAndroidNot DefinedOfficial Fix0.35CVE-2022-20205
15/06/20225.35.1Google Android DevicePolicyManagerService.java registerRemoteBugreportReceivers elévation de privilègesAndroidNot DefinedOfficial Fix0.32CVE-2022-20204
15/06/20223.33.2Google Android Hotspot State SoftApManager.java updateApState divulgation de l'informationAndroidNot DefinedOfficial Fix0.29CVE-2022-20200
15/06/20224.24.0Google Android NFC Stack llcp_dlc.cc llcp_dlc_proc_connect_pdu divulgation de l'informationAndroidNot DefinedOfficial Fix0.29CVE-2022-20198
15/06/20225.35.1Google Android Parcel.java recycle elévation de privilègesAndroidNot DefinedOfficial Fix0.32CVE-2022-20197
15/06/20223.33.2Google Android gallery3d/Photos divulgation de l'informationAndroidNot DefinedOfficial Fix0.17CVE-2022-20196
15/06/20224.24.0Google Android buffer overflowAndroidNot DefinedOfficial Fix0.24CVE-2022-20185
15/06/20224.24.0Google Android faceauth_hypx.c hypx_create_blob_dmabuf buffer overflowAndroidNot DefinedOfficial Fix0.20CVE-2022-20183
15/06/20224.24.0Google Android A ioctl_dpm_qos_update buffer overflowAndroidNot DefinedOfficial Fix0.30CVE-2022-20178
15/06/20226.76.4Google Android Kernel Base Driver buffer overflowAndroidNot DefinedOfficial Fix0.26CVE-2022-20166
15/06/20225.35.1Google Android ipu-core-jqs-msg-transport.c ipu_core_jqs_msg_transport_kernel_write_sync buffer overflowAndroidNot DefinedOfficial Fix0.29CVE-2022-20155
15/06/20224.24.0Google Android sock.c lock_sock_nested buffer overflowAndroidNot DefinedOfficial Fix0.38CVE-2022-20154
15/06/20226.76.4Google Android rcu_segcblist.c rcu_cblist_dequeue buffer overflowAndroidNot DefinedOfficial Fix0.42CVE-2022-20153
15/06/20224.24.0Google Android TitanM Chip buffer overflowAndroidNot DefinedOfficial Fix0.36CVE-2022-20152
15/06/20226.76.4Google Android Kernel buffer overflowAndroidNot DefinedOfficial Fix0.37CVE-2022-20148
15/06/20225.55.3Google Android ZenModeHelper.java addAutomaticZenRule dénie de serviceAndroidNot DefinedOfficial Fix0.36CVE-2022-20143
15/06/20225.35.1Google Android igmp.c ip_check_mc_rcu buffer overflowAndroidNot DefinedOfficial Fix0.49CVE-2022-20141
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.36CVE-2022-20191
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.37CVE-2022-20190
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.42CVE-2022-20188
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.48CVE-2022-20184
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.45CVE-2022-20181
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.51CVE-2022-20179
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.51CVE-2022-20177
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.51CVE-2022-20175
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.51CVE-2022-20173
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.49CVE-2022-20171
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.54CVE-2022-20170
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.54CVE-2022-20169
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.00CVE-2022-20168
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.52CVE-2022-20167
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.49CVE-2022-20164
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.43CVE-2022-20160
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.49CVE-2022-20151
15/06/20225.55.3Google Android Kernel Privilege EscalationAndroidNot DefinedOfficial Fix0.55CVE-2022-20149
15/06/20223.73.6Google Android Vpn.java startLegacyVpnPrivileged chiffrement faibleAndroidNot DefinedOfficial Fix0.49CVE-2022-20145
15/06/20226.36.0Google Android gatt_sr.cc read_multi_rsp buffer overflowAndroidNot DefinedOfficial Fix0.67CVE-2022-20140

8332 plus d'entrées ne sont pas affichées

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!