Back to all manufacturers

Motorola

Motorola is affected by vulnerabilities that affect all Android manufacturers in addition to those listed below.

Motorola has a FUM score of 3.34.

Volez

(json)

• CVE numbers:
• Coordinated disclosure?: false
• Categories: signature
• Details: Ability to modify a signed OTA recovery package due to an error in the signature verifier [hackers-handbook]
• Discovered by: Christopher Lais (Zinx) [hackers-handbook] on: Unknown
• Reported on: 2009-12-11 [volez-zen-thought][archived]
• Fixed on: Unknown
• Fix released on: Unknown
• Affected versions: 2.0-2.0.1 [android-paper] regex: 2.0.[0-1]
• Affected devices: Motorola Droid [android-paper]
• Affected manufacturers: Motorola [android-paper]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-06-28

mempodroid - mempodripper - mem exploit

(json)

• CVE numbers: CVE-2012-0056 [mempodroid-cve-mitre]
• Coordinated disclosure?: false
• Categories: kernel
• Details: The mem_write function in the Linux kernel does not properly check permissions, allowing a user to gain privileges [mempodroid-cve-mitre]
• Discovered by: Jay Freeman (saurik) [xda-forum-mempodroid] on: 2012-01-24 [xda-forum-mempodroid]
• Reported on: 2012-01-24 [xda-forum-mempodroid]
• Fixed on: 2012-01-17 [citation-needed]
• Fix released on: Unknown
• Affected versions: 4.0.1-4.0.3 [citation-needed] regex: 4.0.[1-3]
• Affected devices: Acer A200 Tablet, Galaxy Nexus, Motorola RAZR, Nexus S, Asus Transformer Prime [android-paper]
• Affected manufacturers: Acer [android-paper], Samsung [android-paper], Motorola [android-paper], Asus [android-paper]
• Fixed versions:
• Submission: by: Daniel Carter, on: 2019-07-03

Motochopper

(json)

• CVE numbers: CVE-2013-2596 [citation-needed]
• Coordinated disclosure?: false
• Categories: kernel
• Details: Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9 QCIR-2013-00004-1 [QCIR-2013-00004-1]
• Discovered by: Dan Rosenberg [citation-needed] on: 2013-04-08 [citation-needed]
• Reported on: 2013-04-08 [azimuth-unlock-moto-bootloader#0][azimuth-unlock-moto-bootloader#1]
• Fixed on: 2013-04-19 [fb_mmap-patch]
• Fix released on: 2013-07-17 [xda-developers-motochopper]
• Affected versions: 4.1.2 [citation-needed] regex:
• Affected devices: (Atrix Hd, Razr hd, Razr M, Qualcomm Msm8960) [citation-needed]
• Affected manufacturers: Motorola [citation-needed], Qualcomm [QCIR-2013-00004-1]
• Fixed versions: 4.1.2 build 9.8.1Q-79 [citation-needed]
• Submission: by: Daniel R. Thomas, on: 2013-09-04

Defy republic init_runit

(json)

• CVE numbers: CVE-2013-4777 [CVE-2013-4777], CVE-2013-5933 [CVE-2013-5933]
• Coordinated disclosure?: true
• Categories: permissions
• Details: A certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless uses init to create a /dev/socket/init_runit socket that listens for shell commands, which allows local users to gain privileges by interacting with a LocalSocket object. [CVE-2013-4777] Stack-based buffer overflow in the sub_E110 function in init in a certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless allows local users to gain privileges or cause a denial of service (memory corruption) by writing a long string to the /dev/socket/init_runit socket that is inconsistent with a certain length value that was previously written to this socket. [CVE-2013-5933]
• Discovered by: Justin Case [plus-jcase-defy-republic] on: 2013-07-09 [plus-jcase-defy-republic]
• Reported on: 2013-09-24 [plus-jcase-defy-republic]
• Fixed on: Unknown
• Fix released on: Unknown
• Affected versions: 2.3.7 [citation-needed] regex:
• Affected devices: Defy Xt on Republic Wireless [CVE-2013-4777]
• Affected manufacturers: Motorola [citation-needed]
• Fixed versions:
• Submission: by: Daniel R. Thomas, on: 2013-11-06; by: Laurent Simon, on: 2013-10-07

TwerkMyMoto

(json)

• CVE numbers:
• Coordinated disclosure?: false
• Categories: permissions
• Details: Motorola Razr I (x86) 4.1.2 root exploit, silly permissions bug. symlink /data/logs/core to uevent_helper [plus-jcase-twerkmymoto]
• Discovered by: Justin Case (jcase) [plus-jcase-twerkmymoto] on: 2013-11-24 [twerk-my-moto-commit][archived]
• Reported on: 2013-11-24 [plus-jcase-twerkmymoto]
• Fixed on: Unknown
• Fix released on: Unknown
• Affected versions: 4.1.2 [plus-jcase-twerkmymoto] regex: 4.1.2
• Affected devices: Motorola Razr I (x86) [plus-jcase-twerkmymoto]
• Affected manufacturers: Motorola [plus-jcase-twerkmymoto]
• Fixed versions:
• Submission: by: Daniel R. Thomas, on: 2014-07-17; by: Laurent Simon, on: 2014-06-05