296,172
Total vulnerabilities in the database
In multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to determine what site a device has connected to through a VPN due to side channel information disclosure. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
| Software | From | Fixed in |
|---|---|---|
| google / android | 14.0 | 14.0.x |
| google / android | 15.0 | 15.0.x |