Software Detail

Software Informaton Top

SmartPhone

Software Detail

Android

Number Of NVD

6904

CRITICAL

484

HIGH

3022

MEDIUM

3149

LOW

241

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	Google Apache License v2.0 GPL v2 LGPL 2.1+ Mobile

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
491	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
492	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	317	812	67
493	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
494	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
495	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
496	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
497	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
498	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
499	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
500	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
501	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
502	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
503	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
504	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1594	2337	209
505	Android 9.0	9.0			109	441	323	34
506	Android 7.2	7.2			16	61	79	9
507	Android 12.1	12.1			15	229	224	23
508	Android 12.0l	12.0l			0	28	68	9
509	Android 12.0	12.0			43	447	1159	104
510	Android 11.0	11.0			58	636	1364	107
511	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	less than	Update date Published date	Show Affected	Exploit PoC Search
491	7.8 -	HIGH Local	In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. U…	NVD-CWE-noinfo	CVE-2023-21398	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

492	7.8 -	HIGH Local	In Setup Wizard, there is a possible way to save a WiFi network due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User…	NVD-CWE-noinfo	CVE-2023-21397	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

493	7.8 -	HIGH Local	In Activity Manager, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges needed. User inte…	NVD-CWE-noinfo	CVE-2023-21396	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

494	6.5 -	MEDIUM Adjacent	In Bluetooth, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User inte…	CWE-416 Use After Free	CVE-2023-21395	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

495	5.5 -	MEDIUM Local	In registerPhoneAccount of TelecomServiceImpl.java, there is a possible way to reveal images from another user due to a missing permission check. This could lead to local information disclosure with …	NVD-CWE-Other	CVE-2023-21394	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

496	7.8 -	HIGH Local	In Settings, there is a possible way for the user to change SIM due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. Use…	CWE-862 Missing Authorization	CVE-2023-21393	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

497	8.8 -	HIGH Adjacent	In Bluetooth, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege when connecting to a Bluetooth device with no additional execution pr…	CWE-416 Use After Free	CVE-2023-21392	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

498	7.5 -	HIGH Network	In Messaging, there is a possible way to disable the messaging application due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed…	CWE-20 Improper Input Validation	CVE-2023-21391	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

499	7.8 -	HIGH Local	In Sim, there is a possible way to evade mobile preference restrictions due to a permission bypass. This could lead to local escalation of privilege with no additional execution privileges needed. Us…	CWE-863 Incorrect Authorization	CVE-2023-21390	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm

500	7.8 -	HIGH Local	In Settings, there is a possible bypass of profile owner restrictions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges neede…	CWE-862 Missing Authorization	CVE-2023-21389	cpe:2.3:o:google:android::	14.0	2024-11-21 16:42 2023-10-31	Show	GitHub Exploit DB Packet Storm