Vulnerabilities > Google > Android > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-02-11 CVE-2021-39635 Incorrect Default Permissions vulnerability in Google Android
ims_ex is a vendor system service used to manage VoLTE in unisoc devices,But it does not verify the caller's permissions,so that normal apps (No phone permissions) can obtain some VoLTE sensitive information and manage VoLTE calls.Product: AndroidVersions: Android SoCAndroid ID: A-206492634
network
low complexity
google CWE-276
critical
 9.1
9.1
2022-02-11 CVE-2021-39616 Unspecified vulnerability in Google Android
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-204686438
network
low complexity
google
critical
 9.8
9.8
2022-01-14 CVE-2021-39623 Out-of-bounds Write vulnerability in Google Android
In doRead of SimpleDecodingSource.cpp, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-01-14 CVE-2021-1049 Unspecified vulnerability in Google Android
Hacker one bug ID: 1343975Product: AndroidVersions: Android SoCAndroid ID: A-204256722
network
low complexity
google
critical
 9.8
9.8
2021-12-15 CVE-2021-39655 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-192641593References: N/A
network
low complexity
google
critical
 9.8
9.8
2021-12-15 CVE-2021-39645 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-199805112References: N/A
network
low complexity
google
critical
 9.8
9.8
2021-12-15 CVE-2021-39644 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-199809304References: N/A
network
low complexity
google
critical
 9.8
9.8
2021-12-15 CVE-2021-39641 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-126949257References: N/A
network
low complexity
google
critical
 9.8
9.8
2021-12-15 CVE-2021-0956 Out-of-bounds Write vulnerability in Google Android 11.0/12.0
In NfcTag::discoverTechnologies (activation) of NfcTag.cpp, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
critical
 9.8
9.8
2021-12-15 CVE-2021-0889 Unspecified vulnerability in Google Android
In Android TV , there is a possible silent pairing due to lack of rate limiting in the pairing flow.
network
low complexity
google
critical
 9.8
9.8