Software Detail

Software Informaton Top

SmartPhone

Software Detail

Android

Number Of NVD

6904

CRITICAL

484

HIGH

3022

MEDIUM

3149

LOW

241

URL	https://www.android.com/
Explanation	It is an operating system installed on smartphones provided by Google. Since it is open source, many manufacturers use it in their smartphones, tablets, and wearable devices. The support period differs for each development vendor. After Google provides a security patch, it is up to the vendor to provide the patch to the target devices.
Tag	GPL v2 LGPL 2.1+ Mobile Google Apache License v2.0

Add Information URL

No	Type	Name	URL
1			https://en.wikipedia.org/wiki/Android_version_history
2			https://source.android.com/setup/start/licenses
3			https://source.android.com/security/bulletin/
4			https://developer.android.com/
5			https://developer.android.com/about/versions/
6			https://android-developers.googleblog.com/

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
611	Android 14	14.1	Nov. 6, 2024	Aug. 7, 2024	0	3	1	0
612	Android 13	13.4	Aug. 7, 2023	Aug. 15, 2022	15	317	812	67
613	Android 12	12.4	Oct. 17, 2022	Oct. 4, 2020	43	479	1193	106
614	Android 11	11	Sept. 8, 2020	Sept. 8, 2020	58	636	1364	107
615	Android 10	10	Sept. 3, 2019	Sept. 3, 2019	103	680	1055	110
616	Android 9	9	Aug. 6, 2018	Aug. 6, 2018	112	463	331	35
617	Android 8	8.1.0	Dec. 5, 2017	Aug. 21, 2017	144	529	318	25
618	Android 7	7.1.2	April 4, 2017	Aug. 22, 2016	116	627	380	20
619	Android 6	6.0.1	Dec. 7, 2015	Oct. 5, 2015	109	734	397	20
620	Android 5	5.1.1	April 21, 2015	Nov. 12, 2014	67	661	317	16
621	Android 4	4.4.4	June 19, 2014	Oct. 18, 2011	53	577	271	16
622	Android 3	3.2.6	Feb. 1, 2012	Feb. 22, 2011	25	420	174	10
623	Android 2	2.2.3	Nov. 21, 2011	Oct. 26, 2009	25	424	181	12
624	Android 1	1.6	Sept. 15, 2009	Sept. 23, 2008	150	1594	2337	209
625	Android 9.0	9.0			109	441	323	34
626	Android 7.2	7.2			16	61	79	9
627	Android 12.1	12.1			15	229	224	23
628	Android 12.0l	12.0l			0	28	68	9
629	Android 12.0	12.0			43	447	1159	104
630	Android 11.0	11.0			58	636	1364	107
631	Android 10.0	10.0			103	680	1055	110

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
611	5.5 -	MEDIUM Local	In appendEscapedSQLString of DatabaseUtils.java, there is a possible SQL injection due to unsafe deserialization. This could lead to local information disclosure with User execution privileges needed…	CWE-502 Deserialization of Untrusted Data	CVE-2023-40121	cpe:2.3:o:google:android:13.0:* cpe:2.3:o:google:android:12.1:* cpe:2.3:o:google:android:12.0:* cpe:2.3:o:goog…	2024-11-21 17:18 2023-10-28	Show	GitHub Exploit DB Packet Storm

612	7.8 -	HIGH Local	In multiple locations, there is a possible way to bypass user notification of foreground services due to improper input validation. This could lead to local escalation of privilege with no additional…	NVD-CWE-noinfo	CVE-2023-40120	cpe:2.3:o:google:android:13.0:* cpe:2.3:o:google:android:12.1:* cpe:2.3:o:google:android:12.0:* cpe:2.3:o:goog…	2024-11-21 17:18 2023-10-28	Show	GitHub Exploit DB Packet Storm

613	7.8 -	HIGH Local	In onTaskAppeared of PipTaskOrganizer.java, there is a possible way to bypass background activity launch restrictions due to a logic error in the code. This could lead to local escalation of privileg…	NVD-CWE-noinfo	CVE-2023-40116	cpe:2.3:o:google:android:12.1:* cpe:2.3:o:google:android:12.0:* cpe:2.3:o:google:android:11.0:*	2024-11-21 17:18 2023-10-28	Show	GitHub Exploit DB Packet Storm

614	7.5 -	HIGH Network	In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privil…	CWE-125 Out-of-bounds Read	CVE-2023-35663	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-10-19	Show	GitHub Exploit DB Packet Storm

615	7.5 -	HIGH Network	In multiple functions of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional e…	CWE-125 Out-of-bounds Read	CVE-2023-35656	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-10-19	Show	GitHub Exploit DB Packet Storm

616	7.8 -	HIGH Local	there is a possible use-after-free write due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for e…	CWE-667 Improper Locking	CVE-2023-3781	cpe:2.3:o:google:android:-:*	2024-11-21 17:18 2023-10-12	Show	GitHub Exploit DB Packet Storm

617	7.8 -	HIGH Local	In TBD of TBD, there is a possible way to bypass carrier restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed…	NVD-CWE-noinfo	CVE-2023-40142	cpe:2.3:o:google:android:-:*	2024-11-21 17:18 2023-10-12	Show	GitHub Exploit DB Packet Storm

618	7.8 -	HIGH Local	In temp_residency_name_store of thermal_metrics.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution…	CWE-787 Out-of-bounds Write	CVE-2023-40141	cpe:2.3:o:google:android:-:*	2024-11-21 17:18 2023-10-12	Show	GitHub Exploit DB Packet Storm

619	9.8 -	CRITICAL Network	there is a possible out of bounds write due to buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitatio…	CWE-787 Out-of-bounds Write	CVE-2023-35662	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-10-12	Show	GitHub Exploit DB Packet Storm

620	7.5 -	HIGH Network	In ProfSixDecomTcpSACKoption of RohcPacketCommon.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional executi…	CWE-125 Out-of-bounds Read	CVE-2023-35661	cpe:2.3:o:google:android:-:*	2024-11-21 17:08 2023-10-12	Show	GitHub Exploit DB Packet Storm