Skip to main content
CVE-2019-11743 LOW POC Monitor

Navigation events were not fully adhering to the W3C's "Navigation-Timing Level 2" draft specification in some instances for the unload event, which restricts access to detailed timing attributes to. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Mozilla Information Disclosure Firefox Firefox Esr Thunderbird
NVD
CVSS 3.1
3.7
EPSS
1.8%
CVE-2019-9440 LOW Monitor

In AOSP Email, there is a possible information disclosure due to a confused deputy. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9438 LOW Monitor

In the Package Manager service, there is a possible information disclosure due to a confused deputy. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9377 LOW Monitor

In FingerprintService, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Google Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9364 LOW Monitor

In AudioService, there is a possible trigger of background user audio due to a permissions bypass. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Google Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9351 LOW Monitor

In SyncStatusObserver, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Information Disclosure Google Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9292 LOW Monitor

In the Activity Manager service, there is a possible information disclosure due to a confused deputy. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9280 LOW Monitor

In keyguard, there is a possible escalation of privilege due to improper permission checks. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Google Privilege Escalation Android
NVD
CVSS 3.1
3.3
EPSS
0.1%
CVE-2019-9277 LOW Monitor

In the proc filesystem, there is a possible information disclosure due to log information disclosure. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Android
NVD
CVSS 3.1
3.3
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy