Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-15 | CVE-2021-0978 | Missing Authorization vulnerability in Google Android 12.0 In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
2021-12-15 | CVE-2021-0982 | Missing Authorization vulnerability in Google Android 12.0 In getOrganizationNameForUser of DevicePolicyManagerService.java, there is a possible organization name disclosure due to a missing permission check. | 2.1 |
2021-12-15 | CVE-2021-0985 | Missing Authorization vulnerability in Google Android 12.0 In onReceive of AlertReceiver.java, there is a possible way to dismiss system dialog due to a missing permission check. | 4.6 |
2021-12-15 | CVE-2021-0986 | Missing Authorization vulnerability in Google Android 12.0 In hasGrantedPolicy of DevicePolicyManagerService.java, there is a possible information disclosure about the device owner, profile owner, or device admin due to a logic error in the code. | 5.5 |
2021-12-15 | CVE-2021-0994 | Missing Authorization vulnerability in Google Android 12.0 In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 2.1 |
2021-12-15 | CVE-2021-0999 | Missing Authorization vulnerability in Google Android 12.0 In the broadcast definition in AndroidManifest.xml, there is a possible way to set the A2DP bluetooth device connection state due to a missing permission check. | 4.6 |
2021-12-15 | CVE-2021-1004 | Missing Authorization vulnerability in Google Android 12.0 In getConfiguredNetworks of WifiServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 4.6 |
2021-12-15 | CVE-2021-1010 | Missing Authorization vulnerability in Google Android 12.0 In getSigningKeySet of PackageManagerService.java, there is a missing permission check. | 2.1 |
2021-12-15 | CVE-2021-1011 | Missing Authorization vulnerability in Google Android 12.0 In setPackageStoppedState of PackageManagerService.java, there is a missing permission check. | 2.1 |
2021-12-15 | CVE-2021-1017 | Missing Authorization vulnerability in Google Android 12.0 In AdapterService and GattService definition of AndroidManifest.xml, there is a possible way to disable bluetooth connection due to a missing permission check. | 4.4 |