Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2023-10-30 CVE-2023-21311 Incorrect Authorization vulnerability in Google Android
In Settings, there is a possible way to control private DNS settings from a secondary user due to a permissions bypass.
local
low complexity
google CWE-863
5.5
2023-10-30 CVE-2023-21312 Unspecified vulnerability in Google Android
In IntentResolver, there is a possible cross-user media read due to a confused deputy.
local
low complexity
google
5.5
2023-10-30 CVE-2023-21313 Missing Authorization vulnerability in Google Android
In Core, there is a possible way to forward calls without user knowledge due to a missing permission check.
local
low complexity
google CWE-862
7.8
2023-10-30 CVE-2023-21314 Out-of-bounds Read vulnerability in Google Android
In Bluetooth, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
4.4
2023-10-30 CVE-2023-21315 Out-of-bounds Read vulnerability in Google Android
In Bluetooth, there is a possible out of bounds read due to a heap buffer overflow.
low complexity
google CWE-125
6.5
2023-10-30 CVE-2023-21316 Information Exposure Through Discrepancy vulnerability in Google Android
In Content, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
5.5
2023-10-30 CVE-2023-21317 Information Exposure Through Discrepancy vulnerability in Google Android
In ContentService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
5.5
2023-10-30 CVE-2023-21318 Information Exposure Through Discrepancy vulnerability in Google Android
In Content, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
5.5
2023-10-30 CVE-2023-21319 Information Exposure Through Discrepancy vulnerability in Google Android
In UsageStatsService, there is a possible way to read installed 3rd party apps due to side channel information disclosure.
local
low complexity
google CWE-203
5.5
2023-10-30 CVE-2023-21320 Information Exposure Through Discrepancy vulnerability in Google Android
In Device Policy, there is a possible way to verify if a particular admin app is registered on the device due to side channel information disclosure.
local
low complexity
google CWE-203
5.5