Vulnerabilities > Google > Android
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-19 | CVE-2023-21086 | Unspecified vulnerability in Google Android In isToggleable of SecureNfcEnabler.java and SecureNfcPreferenceController.java, there is a possible way to enable NFC from a secondary account due to a permissions bypass. | 7.8 |
| 2023-04-19 | CVE-2023-21087 | Unspecified vulnerability in Google Android In PreferencesHelper.java, an uncaught exception may cause the device to get stuck in a boot loop. | 5.5 |
| 2023-04-19 | CVE-2023-21088 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In deliverOnFlushComplete of LocationProviderManager.java, there is a possible way to bypass background activity launch restrictions due to a logic error in the code. | 7.8 |
| 2023-04-19 | CVE-2023-21089 | Unspecified vulnerability in Google Android In startInstrumentation of ActivityManagerService.java, there is a possible way to keep the foreground service alive while the app is in the background. | 7.8 |
| 2023-04-19 | CVE-2023-21090 | Resource Exhaustion vulnerability in Google Android 13.0 In parseUsesPermission of ParsingPackageUtils.java, there is a possible boot loop due to resource exhaustion. | 5.0 |
| 2023-04-19 | CVE-2023-21091 | Missing Authorization vulnerability in Google Android 13.0 In canDisplayLocalUi of AppLocalePickerActivity.java, there is a possible way to change system app locales due to a missing permission check. | 5.5 |
| 2023-04-19 | CVE-2023-21092 | Unspecified vulnerability in Google Android In retrieveServiceLocked of ActiveServices.java, there is a possible way to dynamically register a BroadcastReceiver using permissions of System App due to improper input validation. | 7.8 |
| 2023-04-19 | CVE-2023-21093 | Path Traversal vulnerability in Google Android In extractRelativePath of FileUtils.java, there is a possible way to access files in a directory belonging to other applications due to a path traversal error. | 7.8 |
| 2023-04-19 | CVE-2023-21094 | Missing Authorization vulnerability in Google Android In sanitize of LayerState.cpp, there is a possible way to take over the screen display and swap the display content due to a missing permission check. | 7.8 |
| 2023-04-19 | CVE-2023-21096 | Use After Free vulnerability in Google Android 12.0/12.1/13.0 In OnWakelockReleased of attribution_processor.cc, there is a use after free that could lead to remote code execution with no additional execution privileges needed. | 9.8 |