Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2022-11-17 CVE-2022-20427 Out-of-bounds Write vulnerability in Google Android
In (TBD) of (TBD), there is a possible way to corrupt memory due to improper input validation.
local
low complexity
google CWE-787
6.7
2022-11-17 CVE-2022-20428 Out-of-bounds Write vulnerability in Google Android
In (TBD) of (TBD), there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
6.7
2022-11-17 CVE-2022-20459 Improper Input Validation vulnerability in Google Android
In (TBD) of (TBD), there is a possible way to redirect code execution due to improper input validation.
local
low complexity
google CWE-20
6.7
2022-11-17 CVE-2022-20460 Out-of-bounds Write vulnerability in Google Android
In (TBD) mprot_unmap? of (TBD), there is a possible way to corrupt the memory mapping due to improper input validation.
local
low complexity
google CWE-787
6.7
2022-11-17 CVE-2022-42533 Integer Overflow or Wraparound vulnerability in Google Android
In shared_metadata_init of SharedMetadata.cpp, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
2022-11-09 CVE-2022-39879 Missing Authorization vulnerability in Google Android 11.0/12.0
Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid.
local
low complexity
google CWE-862
3.3
2022-11-09 CVE-2022-39880 Improper Input Validation vulnerability in Google Android 11.0/12.0
Improper input validation vulnerability in DualOutFocusViewer prior to SMR Nov-2022 Release 1 allows local attacker to perform an arbitrary code execution.
local
low complexity
google CWE-20
7.8
2022-11-09 CVE-2022-39882 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap overflow vulnerability in sflacf_fal_bytes_peek function in libsmat.so library prior to SMR Nov-2022 Release 1 allows local attacker to execute arbitrary code.
local
low complexity
google CWE-787
7.8
2022-11-09 CVE-2022-39883 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0/11.0/12.0
Improper authorization vulnerability in StorageManagerService prior to SMR Nov-2022 Release 1 allows local attacker to call privileged API.
local
low complexity
google CWE-732
7.8
2022-11-09 CVE-2022-39884 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in IImsService prior to SMR Nov-2022 Release 1 allows local attacker to access to Call information.
local
low complexity
google
3.3