Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2022-06-15 CVE-2021-39806 Double Free vulnerability in Google Android 12.1
In closef of label_backends_android.c, there is a possible way to corrupt memory due to a double free.
local
low complexity
google CWE-415
4.6
2022-06-15 CVE-2022-20138 Unspecified vulnerability in Google Android
In ACTION_MANAGED_PROFILE_PROVISIONED of DevicePolicyManagerService.java, there is a possible way for unprivileged app to send MANAGED_PROFILE_PROVISIONED intent due to a missing permission check.
local
low complexity
google
7.2
2022-06-15 CVE-2022-20140 Out-of-bounds Write vulnerability in Google Android 12.0/12.1
In read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
critical
10.0
2022-06-15 CVE-2022-20141 Improper Locking vulnerability in Google Android
In ip_check_mc_rcu of igmp.c, there is a possible use after free due to improper locking.
local
low complexity
google CWE-667
7.2
2022-06-15 CVE-2022-20142 Unspecified vulnerability in Google Android
In createFromParcel of GeofenceHardwareRequestParcelable.java, there is a possible arbitrary code execution due to parcel mismatch.
local
low complexity
google
7.2
2022-06-15 CVE-2022-20143 Resource Exhaustion vulnerability in Google Android
In addAutomaticZenRule of ZenModeHelper.java, there is a possible permanent denial of service due to resource exhaustion.
local
low complexity
google CWE-400
4.9
2022-06-15 CVE-2022-20144 Unspecified vulnerability in Google Android
In multiple functions of AvatarPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy.
local
low complexity
google
7.2
2022-06-15 CVE-2022-20145 Unspecified vulnerability in Google Android 11.0
In startLegacyVpnPrivileged of Vpn.java, there is a possible way to retrieve VPN credentials due to a protocol downgrade attack.
network
low complexity
google
critical
10.0
2022-06-15 CVE-2022-20146 Unspecified vulnerability in Google Android
In uploadFile of FileUploadServiceImpl.java, there is a possible incorrect file access due to a confused deputy.
local
low complexity
google
2.1
2022-06-15 CVE-2022-20147 Out-of-bounds Write vulnerability in Google Android
In nfa_dm_check_set_config of nfa_dm_main.cc, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
7.2