This list highlights the latest CISA catalogue entries of Known Exploited Vulnerabilities from Android and Android products in 2022-2023.
| Product | Vulnerability Name | Date Added | Short Description | Required Action | Due Date | Detail Link |
| Android OS | Android OS Privilege Escalation Vulnerability | 2022-09-08 | The vold volume manager daemon in Android kernel trusts messages from a PF_NETLINK socket, which allows an attacker to execute code and gain root privileges. This vulnerability is associated with GingerBreak and Exploit.AndroidOS.Lotoor. | Apply updates per vendor instructions. | 2022-09-29 | CVE-2011-1823 |
| Kernel | Android Kernel Use-After-Free Vulnerability | 2022-05-23 | Android kernel contains a use-after-free vulnerability that allows for privilege escalation. | Apply updates per vendor instructions. | 2022-06-13 | CVE-2021-1048 |
| Kernel | Android Kernel Race Condition Vulnerability | 2022-05-23 | Android kernel contains a race condition, which allows for a use-after-free vulnerability. Exploitation can allow for privilege escalation. | Apply updates per vendor instructions. | 2022-06-13 | CVE-2021-0920 |
Get the Weekly Cybersecurity Newsletter
Subscribe to get security news and industry ratings updates in your inbox.