Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2024-03-11 CVE-2024-22011 Out-of-bounds Read vulnerability in Google Android
In ss_ProcessRejectComponent of ss_MmConManagement.c, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2024-03-11 CVE-2024-27218 Out-of-bounds Read vulnerability in Google Android
In update_freq_data of , there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
2024-03-11 CVE-2024-27227 Out-of-bounds Write vulnerability in Google Android
A malicious DNS response can trigger a number of OOB reads, writes, and other memory issues
network
low complexity
google CWE-787
critical
9.8
2024-03-11 CVE-2024-27229 NULL Pointer Dereference vulnerability in Google Android
In ss_SendCallBarringPwdRequiredIndMsg of ss_CallBarring.c, there is a possible null pointer deref due to a missing null check.
network
low complexity
google CWE-476
7.5
2024-03-11 CVE-2024-27237 Incorrect Calculation of Buffer Size vulnerability in Google Android
In wipe_ns_memory of nsmemwipe.c, there is a possible incorrect size calculation due to a logic error in the code.
local
low complexity
google CWE-131
5.5
2024-03-11 CVE-2024-0039 Out-of-bounds Write vulnerability in Google Android
In attp_build_value_cmd of att_protocol.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
9.8
2024-03-11 CVE-2024-0044 Injection vulnerability in Google Android
In createSessionInternal of PackageInstallerService.java, there is a possible run-as any app due to improper input validation.
local
low complexity
google CWE-74
6.7
2024-03-11 CVE-2024-0045 Out-of-bounds Read vulnerability in Google Android
In smp_proc_sec_req of smp_act.cc, there is a possible out of bounds read due to improper input validation.
low complexity
google CWE-125
6.5
2024-03-11 CVE-2024-0046 Unspecified vulnerability in Google Android
In installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier restriction bypass due to a logic error in the code.
local
low complexity
google
7.8
2024-03-11 CVE-2024-0047 Unspecified vulnerability in Google Android 14.0
In writeUserLP of UserManagerService.java, device policies are serialized with an incorrect tag due to a logic error in the code.
local
low complexity
google
5.5