Vulnerabilities > Google > Android
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-21248 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. | 7.8 |
| 2023-07-13 | CVE-2023-21249 | Improper Preservation of Permissions vulnerability in Google Android 13.0 In multiple functions of OneTimePermissionUserManager.java, there is a possible one-time permission retention due to a permissions bypass. | 5.5 |
| 2023-07-13 | CVE-2023-21250 | Out-of-bounds Write vulnerability in Google Android In gatt_end_operation of gatt_utils.cc, there is a possible out of bounds write due to a missing bounds check. | 9.8 |
| 2023-07-13 | CVE-2023-21251 | Improper Input Validation vulnerability in Google Android In onCreate of ConfirmDialog.java, there is a possible way to connect to VNP bypassing user's consent due to improper input validation. | 7.3 |
| 2023-07-13 | CVE-2023-21254 | Unspecified vulnerability in Google Android 13.0 In getCurrentState of OneTimePermissionUserManager.java, there is a possible way to hold one-time permissions after the app is being killed due to a logic error in the code. | 7.8 |
| 2023-07-13 | CVE-2023-21255 | Use After Free vulnerability in multiple products In multiple functions of binder.c, there is a possible memory corruption due to a use after free. | 7.8 |
| 2023-07-13 | CVE-2023-21256 | Unspecified vulnerability in Google Android 13.0 In SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities via Settings due to a logic error in the code. | 7.8 |
| 2023-07-13 | CVE-2023-21257 | Missing Authorization vulnerability in Google Android 13.0 In updateSettingsInternalLI of InstallPackageHelper.java, there is a possible way to sideload an app in the work profile due to a missing permission check. | 7.8 |
| 2023-07-13 | CVE-2023-21262 | Race Condition vulnerability in Google Android 12.0/12.1/13.0 In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying the microphone privacy indicator due to a race condition. | 3.1 |
| 2023-07-13 | CVE-2023-21399 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Android there is a possible way to bypass cryptographic assurances due to a logic error in the code. | 7.8 |