Vulnerabilities > Google > Android > 12.0

DATE CVE VULNERABILITY TITLE RISK
2024-03-04 CVE-2024-20022 In lk, there is a possible escalation of privilege due to a missing bounds check.
local
low complexity
linuxfoundation rdkcentral google openwrt
6.7
6.7
2024-02-16 CVE-2024-0016 Out-of-bounds Read vulnerability in Google Android
In multiple locations, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
5.3
5.3
2024-02-16 CVE-2024-0017 Incorrect Authorization vulnerability in Google Android
In shouldUseNoOpLocation of CameraActivity.java, there is a possible confused deputy due to a permissions bypass.
local
low complexity
google CWE-863
5.5
5.5
2024-02-16 CVE-2024-0018 Out-of-bounds Write vulnerability in Google Android
In convertYUV420Planar16ToY410 of ColorConverter.cpp, there is a possible out of bounds write due to a heap buffer overflow.
local
low complexity
google CWE-787
7.8
7.8
2024-02-16 CVE-2024-0019 Unspecified vulnerability in Google Android
In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings.
local
low complexity
google
5.0
5.0
2024-02-16 CVE-2024-0020 Unspecified vulnerability in Google Android
In onActivityResult of NotificationSoundPreference.java, there is a possible way to hear audio files belonging to a different user due to a confused deputy.
local
low complexity
google
5.5
5.5
2024-02-16 CVE-2024-0023 Out-of-bounds Write vulnerability in Google Android
In ConvertRGBToPlanarYUV of Codec2BufferUtils.cpp, there is a possible out of bounds write due to an incorrect bounds check.
local
low complexity
google CWE-787
7.8
7.8
2024-02-16 CVE-2023-40085 Out-of-bounds Read vulnerability in Google Android 12.0/12.1/13.0
In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
5.5
2024-02-16 CVE-2024-0015 Unspecified vulnerability in Google Android
In convertToComponentName of DreamService.java, there is a possible way to launch arbitrary protected activities due to intent redirection.
local
low complexity
google
7.8
7.8
2024-02-16 CVE-2023-40093 Unspecified vulnerability in Google Android
In multiple files, there is a possible way that trimmed content could be included in PDF output due to a logic error in the code.
local
low complexity
google
5.5
5.5