CVE Database

36759+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-32327
7.8 HIGH

In multiple functions of PickerDbFacade.java, there is a possible unauthorized data access due to SQL injection. This could lead to local escalation of privilege with …

Sep 4, 2025
CVE-2025-32326
7.8 HIGH

In multiple functions of AppRestrictionsFragment.java, there is a possible way to bypass intent security check due to a confused deputy. This could lead to local …

Sep 4, 2025
CVE-2025-32325
7.8 HIGH

In appendFrom of Parcel.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of …

Sep 4, 2025
CVE-2025-32324
7.8 HIGH

In onCommand of ActivityManagerShellCommand.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with …

Sep 4, 2025
CVE-2025-32323
7.8 HIGH

In getCallingAppName of Shared.java, there is a possible way to trick users into granting file access via deceptive text in a permission popup due to …

Sep 4, 2025
CVE-2025-32321
7.8 HIGH

In isSafeIntent of AccountTypePreferenceLoader.java, there is a possible way to bypass an intent type check due to a confused deputy. This could lead to local …

Sep 4, 2025
CVE-2025-26464
7.8 HIGH

In executeAppFunction of AppSearchManagerService.java, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation …

Sep 4, 2025
CVE-2025-26454
7.8 HIGH

In validateUriSchemeAndPermission of DisclaimersParserImpl.java , there is a possible way to access data from another user due to a confused deputy. This could lead to …

Sep 4, 2025
CVE-2025-22441
7.3 HIGH

In getContextForResourcesEnsuringCorrectCachedApkPaths of RemoteViews.java, there is a possible way to load arbitrary java code in a privileged context due to a confused deputy. This could …

Sep 4, 2025
CVE-2025-0089
7.8 HIGH

In multiple locations, there is a possible way to hijack the Launcher app due to a logic error in the code. This could lead to …

Sep 4, 2025
CVE-2024-49714
7.8 HIGH

In avrc_vendor_msg of avrc_opt.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to paired device escalation …

Sep 4, 2025
CVE-2025-32312
7.8 HIGH

In createIntentsList of PackageParser.java , there is a possible way to bypass lazy bundle hardening, allowing modified data to be passed to the next process …

Sep 4, 2025
CVE-2025-26462
7.8 HIGH

In AccessibilityServiceConnection.java, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege …

Sep 4, 2025
CVE-2025-26458
7.8 HIGH

In multiple functions of LocationProviderManager.java, there is a possible background activity launch due to a logic error in the code. This could lead to local …

Sep 4, 2025
CVE-2025-26455
7.8 HIGH

In multiple functions of NdkMediaCodec.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation …

Sep 4, 2025
CVE-2025-26452
7.8 HIGH

In loadDrawableForCookie of ResourcesImpl.java, there is a possible way to access task snapshots of other apps due to a confused deputy. This could lead to …

Sep 4, 2025
CVE-2025-26450
7.8 HIGH

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app to inject key and motion events to the default IME due to …

Sep 4, 2025
CVE-2025-26444
7.8 HIGH

In onHandleForceStop of VoiceInteractionManagerService.java, there is a bug that could cause the system to incorrectly revert to the default assistant application when a user-selected assistant …

Sep 4, 2025
CVE-2025-26443
7.3 HIGH

In parseHtml of HtmlToSpannedParser.java, there is a possible way to install apps without allowing installation from unknown sources due to a logic error in the …

Sep 4, 2025
CVE-2025-26440
7.8 HIGH

In multiple functions of CameraService.cpp, there is a possible way to use the camera from the background due to a permissions bypass. This could lead …

Sep 4, 2025
CVE-2025-26438
8.8 HIGH

In smp_process_secure_connection_oob_data of smp_act.cc, there is a possible way to bypass SMP authentication due to Incorrect implementation of a protocol. This could lead to remote …

Sep 4, 2025
CVE-2025-26436
7.8 HIGH

In clearAllowBgActivityStarts of PendingIntentRecord.java, there is a possible way for an application to launch an activity from the background due to BAL Bypass. This could …

Sep 4, 2025
CVE-2025-26435
7.8 HIGH

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a …

Sep 4, 2025
CVE-2025-26430
7.8 HIGH

In getDestinationForApp of SpaAppBridgeActivity, there is a possible cross-user file reveal due to a logic error in the code. This could lead to local escalation …

Sep 4, 2025
CVE-2025-9636
7.9 HIGH

pgAdmin <= 9.7 is affected by a Cross-Origin Opener Policy (COOP) vulnerability. This vulnerability allows an attacker to manipulate the OAuth flow, potentially leading to …

Sep 4, 2025
CVE-2025-38730
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: io_uring/net: commit partial buffers on retry Ring provided buffers are potentially only valid within the …

Sep 4, 2025
CVE-2025-38729
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Validate UAC3 power domain descriptors, too UAC3 power domain descriptors need to be …

Sep 4, 2025
CVE-2025-38728
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: smb3: fix for slab out of bounds on mount to ksmbd With KASAN enabled, it …

Sep 4, 2025
CVE-2025-38724
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() Lei Lu recently reported that nfsd4_setclientid_confirm() did not check …

Sep 4, 2025
CVE-2025-38722
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix UAF in export_dmabuf() As soon as we'd inserted a file reference into descriptor …

Sep 4, 2025
CVE-2025-38718
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctp_rcv A cloned head skb still shares these frag …

Sep 4, 2025
CVE-2025-38715
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: hfs: fix slab-out-of-bounds in hfs_bnode_read() This patch introduces is_bnode_offset_valid() method that checks the requested offset …

Sep 4, 2025
CVE-2025-38714
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds in hfsplus_bnode_read() The hfsplus_bnode_read() method can trigger the issue: [ 174.852007][ T9784] …

Sep 4, 2025
CVE-2025-38713
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() The hfsplus_readdir() method is capable to crash by calling …

Sep 4, 2025
CVE-2025-38708
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: drbd: add missing kref_get in handle_write_conflicts With `two-primaries` enabled, DRBD tries to detect "concurrent" writes …

Sep 4, 2025
CVE-2025-38707
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be …

Sep 4, 2025
CVE-2025-38704
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer access In the preparation stage of CPU online, if …

Sep 4, 2025
CVE-2025-38703
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Make dma-fences compliant with the safe access rules Xe can free some of the …

Sep 4, 2025
CVE-2025-38702
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: fbdev: fix potential buffer overflow in do_register_framebuffer() The current implementation may lead to buffer overflow …

Sep 4, 2025
CVE-2025-38699
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Double-free fix When the bfad_im_probe() function fails during initialization, the memory pointed to …

Sep 4, 2025
CVE-2025-38697
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in …

Sep 4, 2025
CVE-2025-38688
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: iommufd: Prevent ALIGN() overflow When allocating IOVA the candidate range gets aligned to the target …

Sep 4, 2025
CVE-2025-38685
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue triggers when a userspace program does …

Sep 4, 2025
CVE-2025-38682
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: i2c: core: Fix double-free of fwnode in i2c_unregister_device() Before commit df6d7277e552 ("i2c: core: Do not …

Sep 4, 2025
CVE-2025-38680
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() The buffer length check before calling uvc_parse_format() …

Sep 4, 2025
CVE-2025-38679
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: media: venus: Fix OOB read due to missing payload bound check Currently, The event_seq_changed() handler …

Sep 4, 2025
CVE-2025-23258
7.3 HIGH

NVIDIA DOCA contains a vulnerability in the collectx-dpeserver Debian package for arm64 that could allow an attacker with low privileges to escalate privileges. A successful …

Sep 4, 2025
CVE-2025-23257
7.3 HIGH

NVIDIA DOCA contains a vulnerability in the collectx-clxapidev Debian package that could allow an actor with low privileges to escalate privileges. A successful exploit of …

Sep 4, 2025
CVE-2025-23256
8.7 HIGH

NVIDIA BlueField contains a vulnerability in the management interface, where an attacker with local access could cause incorrect authorization to modify the configuration. A successful …

Sep 4, 2025
CVE-2025-57263
7.2 HIGH

An authenticated SQL injection vulnerability in VX Guestbook 1.07 allows attackers with admin access to inject malicious SQL payloads via the "word" POST parameter in …

Sep 4, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.