Vulnerabilities > Google > Android > 12.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-06 | CVE-2023-21252 | Unspecified vulnerability in Google Android In validatePassword of WifiConfigurationUtil.java, there is a possible way to get the device into a boot loop due to improper input validation. | 5.5 |
| 2023-10-06 | CVE-2023-21253 | Resource Exhaustion vulnerability in Google Android In multiple locations, there is a possible way to crash multiple system services due to resource exhaustion. | 5.5 |
| 2023-10-06 | CVE-2023-21266 | Unspecified vulnerability in Google Android In multiple functions of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. | 7.8 |
| 2023-10-06 | CVE-2023-21291 | Missing Authorization vulnerability in Google Android In visitUris of Notification.java, there is a possible way to reveal image contents from another user due to a missing permission check. | 5.5 |
| 2023-09-27 | CVE-2023-44121 | Unspecified vulnerability in Google Android The vulnerability is an intent redirection in LG ThinQ Service ("com.lge.lms2") in the "com/lge/lms/things/ui/notification/NotificationManager.java" file. | 6.3 |
| 2023-09-27 | CVE-2023-44126 | Unspecified vulnerability in Google Android The vulnerability is that the Call management ("com.android.server.telecom") app patched by LG sends a lot of LG-owned implicit broadcasts that disclose sensitive data to all third-party apps installed on the same device. | 5.5 |
| 2023-09-27 | CVE-2023-44127 | Unspecified vulnerability in Google Android he vulnerability is that the Call management ("com.android.server.telecom") app patched by LG launches implicit intents that disclose sensitive data to all third-party apps installed on the same device. | 5.5 |
| 2023-09-27 | CVE-2023-44128 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android he vulnerability is to delete arbitrary files in LGInstallService ("com.lge.lginstallservies") app. | 3.6 |
| 2023-09-27 | CVE-2023-44129 | Unspecified vulnerability in Google Android The vulnerability is that the Messaging ("com.android.mms") app patched by LG forwards attacker-controlled intents back to the attacker in the exported "com.android.mms.ui.QClipIntentReceiverActivity" activity. | 3.3 |
| 2023-09-11 | CVE-2023-35658 | Use After Free vulnerability in Google Android In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible privilege escalation due to a use after free. | 8.8 |