Vulnerabilities > Google > Android > 12.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-09 | CVE-2024-31324 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In hide of WindowState.java, there is a possible way to bypass tapjacking/overlay protection by launching the activity in portrait mode first and then rotating it to landscape mode. | 7.3 |
| 2024-07-09 | CVE-2024-31325 | Unspecified vulnerability in Google Android In multiple locations, there is a possible way to reveal images across users data due to a logic error in the code. | 7.8 |
| 2024-07-09 | CVE-2024-31327 | Race Condition vulnerability in Google Android In multiple functions of MessageQueueBase.h, there is a possible out of bounds write due to a race condition. | 7.0 |
| 2024-07-09 | CVE-2024-31331 | Unspecified vulnerability in Google Android In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code. | 7.3 |
| 2024-07-09 | CVE-2024-31339 | Use After Free vulnerability in Google Android In multiple functions of StatsService.cpp, there is a possible memory corruption due to a use after free. | 7.8 |
| 2024-07-09 | CVE-2024-34720 | Unspecified vulnerability in Google Android In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote processes due to a logic error in the code. | 7.8 |
| 2024-07-09 | CVE-2024-34721 | Unspecified vulnerability in Google Android In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. | 5.5 |
| 2024-07-09 | CVE-2024-34722 | Unspecified vulnerability in Google Android In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol. low complexity google | 8.8 |
| 2024-07-09 | CVE-2024-34723 | Unspecified vulnerability in Google Android In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code. | 7.8 |
| 2024-07-01 | CVE-2024-39427 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In trusty service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |