Vulnerabilities > Google > Android > 12.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-10 | CVE-2022-20350 | Improper Input Validation vulnerability in Google Android In onCreate of NotificationAccessConfirmationActivity.java, there is a possible way to trick the victim to grant notification access to the wrong app due to improper input validation. | 5.5 |
| 2022-08-10 | CVE-2022-20352 | Missing Authorization vulnerability in Google Android 12.0/12.1 In addProviderRequestListener of LocationManagerService.java, there is a possible way to learn which packages request location information due to a missing permission check. | 5.5 |
| 2022-08-10 | CVE-2022-20353 | Improper Input Validation vulnerability in Google Android In onSaveRingtone of DefaultRingtonePreference.java, there is a possible inappropriate file read due to improper input validation. | 5.5 |
| 2022-08-10 | CVE-2022-20354 | Unspecified vulnerability in Google Android 11.0/12.0/12.1 In onDefaultNetworkChanged of Vpn.java, there is a possible way to disable VPN due to a logic error in the code. | 7.8 |
| 2022-08-10 | CVE-2022-20355 | Improper Input Validation vulnerability in Google Android In get of PacProxyService.java, there is a possible system service crash due to improper input validation. | 5.5 |
| 2022-08-10 | CVE-2022-20356 | Improper Input Validation vulnerability in Google Android 11.0/12.0/12.1 In shouldAllowFgsWhileInUsePermissionLocked of ActiveServices.java, there is a possible way to start foreground service from background due to improper input validation. | 7.8 |
| 2022-08-10 | CVE-2022-20357 | Use of Uninitialized Resource vulnerability in Google Android 12.0/12.1 In writeToParcel of SurfaceControl.cpp, there is a possible information disclosure due to uninitialized data. | 5.5 |
| 2022-08-10 | CVE-2022-20358 | Missing Authorization vulnerability in Google Android In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected content of content providers due to a missing permission check. | 3.3 |
| 2022-08-10 | CVE-2022-20360 | Missing Authorization vulnerability in Google Android In setChecked of SecureNfcPreferenceController.java, there is a missing permission check. | 7.8 |
| 2022-08-10 | CVE-2022-20361 | Unspecified vulnerability in Google Android In btif_dm_auth_cmpl_evt of btif_dm.cc, there is a possible vulnerability in Cross-Transport Key Derivation due to Weakness in Bluetooth Standard. | 9.8 |