Vulnerabilities > Google > Android > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2022-27572 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-04-11 CVE-2022-27571 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-04-11 CVE-2022-27570 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-04-11 CVE-2022-27569 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in parser_infe function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-04-11 CVE-2022-27568 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in parser_iloc function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-04-11 CVE-2022-27567 NULL Pointer Dereference vulnerability in Google Android 10.0/11.0/12.0
Null pointer dereference vulnerability in parser_hvcC function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attackers.
network
low complexity
google CWE-476
critical
 9.8
9.8
2022-04-11 CVE-2022-26099 NULL Pointer Dereference vulnerability in Google Android 10.0/11.0/12.0
Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers.
network
low complexity
google CWE-476
critical
 9.1
9.1
2022-04-11 CVE-2022-26098 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in sheifd_create function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-04-11 CVE-2022-26097 NULL Pointer Dereference vulnerability in Google Android 10.0/11.0/12.0
Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
network
low complexity
google CWE-476
critical
 9.8
9.8
2022-04-11 CVE-2022-26096 NULL Pointer Dereference vulnerability in Google Android 10.0/11.0/12.0
Null pointer dereference vulnerability in parser_ispe function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
network
low complexity
google CWE-476
critical
 9.8
9.8