Android漏洞信息库
(662项)
  662条漏洞信息;   846条到OVAL定义的映射;  330条到CWE定义的映射  
105条原生漏洞;  33条框架层漏洞;  31条内核层漏洞  
  21条Native层漏洞;  368条应用层漏洞;  19条原生应用层漏洞  
  349条第三方应用漏洞;  182条第三方组件漏洞;  27条第三方系统漏洞  

最近发布的AVD条目More

CVE-2012-2808
2015-04-01 06:59:00
[CNNVD]Open Handset Alliance Android 远程DNS缓存投毒漏洞--Android是Google通过Open Handset Alliance发起的项目,用于为移动设备提供完整的软件集,包括操作系统、中间件...
CVSS
5.0
OSVDB/103143
2014-02-09
Android File Manager for Android (com.smartwho.SmartFileManager) contains a flaw that allows traversing outside of a restricted path. The issue is due to the program not properly sanitizing user input...
CVSS
5.0
OSVDB/103153
2014-02-08
Next Browser for Android (com.jiubang.browser) contains a flaw that is due to the application failing to enforce restrictions on browsing history directories. With a specially crafted application, a l...
CVSS
5.0
OSVDB/103119
2014-02-08
Snapchat contains a flaw that is due to the program failing to terminate tokens for messages, which may allow them to be reused. This may allow a remote attacker to crash a user's device by floodi...
CVSS
5.0
OSVDB/102796
2014-01-24
Apache Cordova and PhoneGap contain a flaw that is due to the URL interception ignoring iframe and XMLHttpRequest URLs. With a specially crafted script inside an iframe, a context-dependent attacker t...
CVSS
5.0
OSVDB/102783
2014-01-24
Apache Cordova or PhoneGap contains a flaw that is due to the program not blocking third-party scripts included via <script> tags when their source domain is white listed, even if execute in a d...
CVSS
5.0
OSVDB/102782
2014-01-24
Apache Cordova and PhoneGap contain a flaw that is triggered during substring matching. This may allow a context-dependent attacker to bypass whitelist protection mechanisms.
CVSS
5.0
OSVDB/102781
2014-01-24
Apache Cordova and PhoneGap contain a flaw that is triggered when handling a malformed script running in an iframe, which can allow the script to choose any vulnerable bridge mechanisms via addJavascr...
CVSS
5.0

最近修订的AVD条目More

CVE-2012-0779
2018-01-17 21:29:07
[CNNVD]Adobe Flash Player任意代码执行漏洞--Adobe Flash Player 是一款高性能的、轻量型且极具表现力的客户端运行时播放器。 基于Windows,Mac OS X和Lin...
CVSS
9.3
CVE-2012-1481
2018-01-12 21:29:11
[CNNVD]Textdroid安全漏洞--基于Android平台下的Textdroid (com.app.android.textdroid)应用程序2.5.2版本中存在未明漏洞。该...
CVSS
10.0
CVE-2012-1482
2018-01-12 21:29:11
[CNNVD]TouchPal Contacts安全漏洞--基于Android平台的TouchPal Contacts (com.cootek.smartdialer)应用程序3.3.1和4.0.1版...
CVSS
10.0
CVE-2012-1483
2018-01-12 21:29:11
[CNNVD]Message Forwarder安全漏洞--基于Android平台的Message Forwarder (com.gmail.zbnetium)应用程序1.12.20110409.1版...
CVSS
10.0
CVE-2012-1484
2018-01-12 21:29:11
[CNNVD]WaliSMS CN安全漏洞--基于Android平台的WaliSMS CN (cn.com.wali.walisms)应用程序2.9.2和3.7.0版本中存在未明漏洞。该...
CVSS
10.0

CVSS基础分值

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站