Vulnerabilities > Google > Android > 10.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-11 | CVE-2020-0127 | Out-of-bounds Read vulnerability in Google Android 10.0 In AudioStream::decode of AudioGroup.cpp, there is a possible out of bounds read due to a missing bounds check. | 4.3 |
| 2020-06-11 | CVE-2020-0126 | Use After Free vulnerability in Google Android 10.0 In multiple functions in DrmPlugin.cpp, there is a possible use after free due to a race condition. | 6.9 |
| 2020-06-11 | CVE-2020-0124 | Out-of-bounds Write vulnerability in Google Android 10.0 In markBootComplete of InstalldNativeService.cpp, there is a possible out of bounds write due to a missing bounds check. | 4.6 |
| 2020-06-10 | CVE-2020-0121 | Incorrect Default Permissions vulnerability in Google Android 10.0 In updateUidProcState of AppOpsService.java, there is a possible permission bypass due to a logic error. | 2.1 |
| 2020-06-10 | CVE-2020-0119 | Improper Certificate Validation vulnerability in Google Android 10.0 In addOrUpdateNetworkInternal and related functions of WifiConfigManager.java, there is a possible man in the middle attack due to improper certificate validation. | 5.4 |
| 2020-06-10 | CVE-2020-0118 | Out-of-bounds Write vulnerability in Google Android 10.0 In addListener of RegionSamplingThread.cpp, there is a possible out of bounds write due to improper input validation. | 6.9 |
| 2020-06-10 | CVE-2020-0117 | Integer Overflow or Wraparound vulnerability in Google Android In aes_cmac of aes_cmac.cc, there is a possible out of bounds write due to an integer overflow. | 10.0 |
| 2020-06-10 | CVE-2020-0116 | Incorrect Default Permissions vulnerability in Google Android 10.0 In checkSystemLocationAccess of LocationAccessPolicy.java, there is a possible bypass of user profile isolation due to a permissions bypass. | 4.9 |
| 2020-06-10 | CVE-2020-0115 | Improper Privilege Management vulnerability in Google Android In verifyIntentFiltersIfNeeded of PackageManagerService.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. | 7.2 |
| 2020-06-10 | CVE-2020-0114 | Improper Privilege Management vulnerability in Google Android 10.0 In onCreateSliceProvider of KeyguardSliceProvider.java, there is a possible confused deputy due to a PendingIntent error. | 7.2 |