CVEs classified under CWE-927, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2025-48558 — CVSS 7.8 (high): In multiple functions of BatteryService.java, there is a possible way to hijack implicit intent intended for system app due to Implicit…
CVE-2023-47889 — CVSS 7.8 (high): The Android application BINHDRM26 com.bdrm.superreboot 1.0.3, exposes several critical actions through its exported broadcast receivers…
CVE-2022-36830 — CVSS 6.2 (medium): PendingIntent hijacking vulnerability in cancelAlarmManager in Charm by Samsung prior to version 1.2.3 allows local attackers to access…
CVE-2022-36829 — CVSS 6.2 (medium): PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 allows local attackers to access files…
CVE-2022-33734 — CVSS 6.2 (medium): Sensitive information exposure in onCharacteristicChanged in Charm by Samsung prior to version 1.2.3 allows attacker to get bluetooth…
CVE-2022-33733 — CVSS 6.2 (medium): Sensitive information exposure in onCharacteristicRead in Charm by Samsung prior to version 1.2.3 allows attacker to get bluetooth…
CVE-2024-3108 — CVSS 5.5 (medium): An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to…
CVE-2023-41826 — CVSS 5.1 (medium): A PendingIntent hijacking vulnerability in Motorola Device Help (Genie) application that could allow local attackers to access files or…
CVE-2023-41820 — CVSS 5.0 (medium): An implicit intent vulnerability was reported in the Motorola Ready For application that could allow a local attacker to read information…
CVE-2023-41828 — CVSS 4.4 (medium): An implicit intent export vulnerability was reported in the Motorola Phone application, that could allow unauthorized access to a…
CVE-2023-44127 — CVSS 3.6 (low): he vulnerability is that the Call management ("com.android.server.telecom") app patched by LG launches implicit intents that disclose…
CVE-2024-3480 — CVSS 2.8 (low): An Implicit intent vulnerability was reported in the Motorola framework that could allow an attacker to read telephony-related data.
CVE-2023-41824 — CVSS 2.8 (low): An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling…
CVE-2023-41817 — CVSS 2.8 (low): An improper export vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read…