Known Vulnerabilities for Android by Google
Listed below are 10 of the newest known vulnerabilities associated with "Android" by "Google".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44279 json | A improper export of android application components vulnerability in Fortinet FortiTokenAndroid 6.2 all versions, FortiTokenA... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-43439 json | In the Linux kernel, the following vulnerability has been resolved: cgroup: fix race between task migration and iteration W... | Not Provided | 2026-05-08 | 2026-05-11 |
| CVE-2026-42090 json | Notesnook is a note-taking app focused on user privacy & ease of use. Prior to Notesnook Web/Desktop version 3.3.15 and prior... | Not Provided | 2026-05-04 | 2026-05-05 |
| CVE-2026-40027 json | ALEAPP (Android Logs Events And Protobuf Parser) through 3.4.0 contains a path traversal vulnerability in the NQ_Vault.py art... | Not Provided | 2026-04-08 | 2026-04-09 |
| CVE-2026-39973 json | Apktool is a tool for reverse engineering Android APK files. In versions 3.0.0 and 3.0.1, a path traversal vulnerability in `... | Not Provided | 2026-04-21 | 2026-04-23 |
| CVE-2026-39866 json | Lawnchair is a free, open-source home app for Android. Prior to commit fcba413f55dd47f8a3921445252849126c6266b2, command inje... | Not Provided | 2026-04-21 | 2026-04-23 |
| CVE-2026-35643 json | OpenClaw before 2026.3.22 contains an unvalidated WebView JavascriptInterface vulnerability allowing attackers to inject arbi... | Not Provided | 2026-04-10 | 2026-04-10 |
| CVE-2026-35429 json | User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows an unauthorized attacker t... | Not Provided | 2026-05-12 | 2026-05-12 |
| CVE-2026-35394 json | Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobile_open_url tool in mobile-mcp p... | Not Provided | 2026-04-06 | 2026-04-07 |
| CVE-2026-33978 json | Notesnook is a note-taking app focused on user privacy & ease of use. Prior to version 3.3.17, a stored XSS vulnerability exi... | Not Provided | 2026-04-01 | 2026-04-01 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Android | 9.0 | ||||
| Operating System | Android | 8.1 | ||||
| Operating System | Android | 8.0 | ||||
| Operating System | Android | 7.1.2 | ||||
| Operating System | Android | 7.1.1 | ||||
| Operating System | Android | 7.1.0 | ||||
| Operating System | Android | 7.0 | ||||
| Operating System | Android | 6.0.1 | ||||
| Operating System | Android | 6.0 | ||||
| Operating System | Android | 5.1.1 | ||||
| Operating System | Android | 5.1.0 | ||||
| Operating System | Android | 5.1 | ||||
| Operating System | Android | 5.0.2 | ||||
| Operating System | Android | 5.0.1 | ||||
| Operating System | Android | 5.0 | ||||
| Operating System | Android | 4.4.4 | ||||
| Operating System | Android | 4.4.3 | ||||
| Operating System | Android | 4.4.2 | ||||
| Operating System | Android | 4.4.1 | ||||
| Operating System | Android | 4.4 |