Vulnerabilities > Google > Android > 4.2.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-08 | CVE-2022-39913 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information. | 3.3 |
| 2022-12-08 | CVE-2022-39914 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information. | 3.3 |
| 2022-03-04 | CVE-2022-23729 | Improper Authentication vulnerability in Google Android When the device is in factory state, it can be access the shell without adb authentication process. | 7.8 |
| 2022-01-21 | CVE-2022-23728 | Unspecified vulnerability in Google Android Attacker can reset the device with AT Command in the process of rebooting the device. low complexity google | 6.1 |
| 2020-12-24 | CVE-2020-35693 | Unspecified vulnerability in Google Android On some Samsung phones and tablets running Android through 7.1.1, it is possible for an attacker-controlled Bluetooth Low Energy (BLE) device to pair silently with a vulnerable target device, without any user interaction, when the target device's Bluetooth is on, and it is running an app that offers a connectable BLE advertisement. low complexity google | 8.8 |
| 2020-06-05 | CVE-2020-13843 | Unspecified vulnerability in Google Android An issue was discovered on LG mobile devices with Android OS software before 2020-06-01. | 5.5 |
| 2020-02-21 | CVE-2014-7914 | Incorrect Authorization vulnerability in Google Android btif/src/btif_dm.c in Android before 5.1 does not properly enforce the temporary nature of a Bluetooth pairing, which allows user-assisted remote attackers to bypass intended access restrictions via crafted Bluetooth packets after the tapping of a crafted NFC tag. | 8.1 |
| 2020-02-07 | CVE-2014-7224 | Improper Input Validation vulnerability in Google Android A Code Execution vulnerability exists in Android prior to 4.4.0 related to the addJavascriptInterface method and the accessibility and accessibilityTraversal objects, which could let a remote malicious user execute arbitrary code. | 8.8 |
| 2020-01-24 | CVE-2015-1530 | Integer Overflow or Wraparound vulnerability in Google Android media/libmedia/IAudioPolicyService.cpp in Android before 5.1 allows attackers to execute arbitrary code with media_server privileges or cause a denial of service (integer overflow) via a crafted application that provides an invalid array size. | 7.8 |
| 2020-01-24 | CVE-2015-1525 | Improper Input Validation vulnerability in Google Android audio/AudioPolicyManagerBase.cpp in Android before 5.1 allows attackers to cause a denial of service (audio_policy application outage) via a crafted application that provides a NULL device address. | 5.5 |