Android - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Android
(Google)

Repositories	https://github.com/torvalds/linux
#Vulnerabilities	7304

Date	Id	Summary	Products	Score	Patch	Annotated
2021-04-09	CVE-2021-25356	An improper caller check vulnerability in Managed Provisioning prior to SMR APR-2021 Release 1 allows unprivileged application to install arbitrary application, grant device admin permission and then delete several installed application.	Android	8.8
2021-04-09	CVE-2021-25357	A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in Android O(8.x) and P(9.0), 3.4.81.1 in Android Q(10,0), and 3.6.80.7 in Android R(11.0) allows unprivileged applications to access contact information.	Android	5.5
2021-04-09	CVE-2021-25358	A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1 allows local attackers to access IMSI values without any permission via untrusted applications.	Android	3.3
2021-04-09	CVE-2021-25359	An improper SELinux policy prior to SMR APR-2021 Release 1 allows local attackers to access AP information without proper permissions via untrusted applications.	Android	3.3
2021-04-09	CVE-2021-25360	An improper input validation vulnerability in libswmfextractor library prior to SMR APR-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process.	Android	9.8
2021-04-09	CVE-2021-25361	An improper access control vulnerability in stickerCenter prior to SMR APR-2021 Release 1 allows local attackers to read or write arbitrary files of system process via untrusted applications.	Android	8.8
2021-04-09	CVE-2021-25362	An improper permission management in CertInstaller prior to SMR APR-2021 Release 1 allows untrusted applications to delete certain local files.	Android	6.1
2021-04-09	CVE-2021-25363	An improper access control in ActivityManagerService prior to SMR APR-2021 Release 1 allows untrusted applications to access running processesdelete some local files.	Android	6.1
2021-04-09	CVE-2021-25364	A pendingIntent hijacking vulnerability in Secure Folder prior to SMR APR-2021 Release 1 allows unprivileged applications to access contact information.	Android	3.3
2021-04-09	CVE-2021-25365	An improper exception control in softsimd prior to SMR APR-2021 Release 1 allows unprivileged applications to access the API in softsimd.	Android	7.8