U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Keyword (text search): cpe:/o:google:android:12.0
There are 1,757 matching records.
Displaying matches 1 through 20.
Vuln ID Summary CVSS Severity
CVE-2024-20016

In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation Patch ID: ALPS07835901; Issue ID: ALPS07835901.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2024-20015

In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441419; Issue ID: ALPS08441419.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 7.8 HIGH
 V2.0:(not available)
CVE-2024-20013

In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 6.7 MEDIUM
 V2.0:(not available)
CVE-2024-20012

In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 6.7 MEDIUM
 V2.0:(not available)
CVE-2024-20011

In alac decoder, there is a possible information disclosure due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441146; Issue ID: ALPS08441146.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 9.8 CRITICAL
 V2.0:(not available)
CVE-2024-20010

In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 6.7 MEDIUM
 V2.0:(not available)
CVE-2024-20009

In alac decoder, there is a possible out of bounds write due to an incorrect error handling. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441150; Issue ID: ALPS08441150.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 8.8 HIGH
 V2.0:(not available)
CVE-2024-20007

In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441369; Issue ID: ALPS08441369.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 7.5 HIGH
 V2.0:(not available)
CVE-2024-20002

In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961715; Issue ID: DTV03961715.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 6.7 MEDIUM
 V2.0:(not available)
CVE-2024-20001

In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961601; Issue ID: DTV03961601.

Published: February 05, 2024; 1:15:47 AM -0500 		V3.1: 6.7 MEDIUM
 V2.0:(not available)
CVE-2023-48359

In autotest driver, there is a possible out of bounds write due to improper input validation. This could lead to local denial of service with System execution privileges needed

Published: January 17, 2024; 10:15:58 PM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2023-48358

In drm driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

Published: January 17, 2024; 10:15:58 PM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2023-48357

In vsp driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

Published: January 17, 2024; 10:15:58 PM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2023-48356

In jpg driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

Published: January 17, 2024; 10:15:58 PM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2023-48355

In jpg driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed

Published: January 17, 2024; 10:15:58 PM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2023-48354

In telephone service, there is a possible improper input validation. This could lead to local information disclosure with no additional execution privileges needed

Published: January 17, 2024; 10:15:58 PM -0500 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2023-48353

In vsp driver, there is a possible use after free due to a logic error. This could lead to local denial of service with System execution privileges needed

Published: January 17, 2024; 10:15:57 PM -0500 		V3.1: 4.4 MEDIUM
 V2.0:(not available)
CVE-2023-48352

In phasecheckserver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

Published: January 17, 2024; 10:15:57 PM -0500 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2023-48351

In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

Published: January 17, 2024; 10:15:57 PM -0500 		V3.1: 5.5 MEDIUM
 V2.0:(not available)
CVE-2023-48350

In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed

Published: January 17, 2024; 10:15:57 PM -0500 		V3.1: 5.5 MEDIUM
 V2.0:(not available)