Vulnerabilities > Google > Android > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-02-28 CVE-2023-20946 Unspecified vulnerability in Google Android
In onStart of BluetoothSwitchPreferenceController.java, there is a possible permission bypass due to a confused deputy.
network
low complexity
google
critical
9.8
2022-12-16 CVE-2022-42529 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-235292841References: N/A
network
low complexity
google
critical
9.8
2022-12-13 CVE-2022-20473 Out-of-bounds Read vulnerability in Google Android
In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check.
network
low complexity
google CWE-125
critical
9.8
2022-12-13 CVE-2022-20472 Out-of-bounds Read vulnerability in Google Android
In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check.
network
low complexity
google CWE-125
critical
9.8
2022-08-10 CVE-2022-20239 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android
remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID: A-233972091
network
low complexity
google CWE-610
critical
9.8
2022-07-13 CVE-2022-20238 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
'remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID: A-233154555
network
low complexity
google CWE-119
critical
10.0
2022-07-13 CVE-2022-20229 Out-of-bounds Write vulnerability in Google Android
In bta_hf_client_handle_cind_list_item of bta_hf_client_at.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
10.0
2022-07-13 CVE-2022-20222 Out-of-bounds Write vulnerability in Google Android 12.0/12.1
In read_attr_value of gatt_db.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
10.0
2022-07-13 CVE-2022-20216 Unspecified vulnerability in Google Android
android exported is used to set third-party app access permissions, and the default value of intent-filter is true.
network
low complexity
google
critical
10.0
2022-06-15 CVE-2022-20210 Unspecified vulnerability in Google Android
The UE and the EMM communicate with each other using NAS messages.
network
low complexity
google
critical
10.0