Vulnerabilities > Google > Android > 10.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-13 | CVE-2020-0026 | Use After Free vulnerability in Google Android In Parcel::continueWrite of Parcel.cpp, there is possible memory corruption due to a use after free. | 7.2 |
| 2020-02-13 | CVE-2020-0023 | Incorrect Default Permissions vulnerability in Google Android 10.0 In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user contacts over bluetooth due to a missing permission check. | 4.7 |
| 2020-02-13 | CVE-2020-0022 | Incorrect Calculation vulnerability in multiple products In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. | 8.8 |
| 2020-02-13 | CVE-2020-0021 | NULL Pointer Dereference vulnerability in Google Android 10.0 In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. | 6.8 |
| 2020-02-13 | CVE-2020-0020 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 10.0 In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. | 4.9 |
| 2020-02-13 | CVE-2020-0018 | Information Exposure Through Log Files vulnerability in Google Android In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. | 2.1 |
| 2020-02-13 | CVE-2020-0017 | Information Exposure vulnerability in Google Android In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. | 3.3 |
| 2020-02-13 | CVE-2020-0015 | Improper Privilege Management vulnerability in Google Android In onCreate of CertInstaller.java, there is a possible way to overlay the Certificate Installation dialog by a malicious application. | 4.4 |
| 2020-02-13 | CVE-2020-0014 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. | 4.3 |
| 2020-02-13 | CVE-2020-0005 | Out-of-bounds Write vulnerability in Google Android In btm_read_remote_ext_features_complete of btm_acl.cc, there is a possible out of bounds write due to a missing bounds check. | 7.2 |