Vulnerabilities > Google > Android > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-16 CVE-2022-42529 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-235292841References: N/A
network
low complexity
google
critical
 9.8
9.8
2022-12-13 CVE-2022-20473 Out-of-bounds Read vulnerability in Google Android
In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check.
network
low complexity
google CWE-125
critical
 9.8
9.8
2022-12-13 CVE-2022-20472 Out-of-bounds Read vulnerability in Google Android
In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an incorrect bounds check.
network
low complexity
google CWE-125
critical
 9.8
9.8
2022-09-13 CVE-2022-20385 Improper Validation of Specified Quantity in Input vulnerability in Google Android
a function called 'nla_parse', do not check the len of para, it will check nla_type (which can be controlled by userspace) with 'maxtype' (in this case, it is GSCAN_MAX), then it access polciy array 'policy[type]', which OOB access happens.Product: AndroidVersions: Android SoCAndroid ID: A-238379819
network
low complexity
google CWE-1284
critical
 9.8
9.8
2022-09-06 CVE-2022-26447 Out-of-bounds Write vulnerability in multiple products
In BT firmware, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google yoctoproject CWE-787
critical
 9.8
9.8
2022-08-11 CVE-2022-20237 Out-of-bounds Write vulnerability in Google Android
In BuildDevIDResponse of miscdatabuilder.cpp, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
 9.8
9.8
2022-08-10 CVE-2022-20239 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android
remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID: A-233972091
network
low complexity
google CWE-610
critical
 9.8
9.8
2022-07-13 CVE-2022-20238 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
'remap_pfn_range' here may map out of size kernel memory (for example, may map the kernel area), and because the 'vma->vm_page_prot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID: A-233154555
network
low complexity
google CWE-119
critical
 10.0
10
2022-07-13 CVE-2022-20229 Out-of-bounds Write vulnerability in Google Android
In bta_hf_client_handle_cind_list_item of bta_hf_client_at.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
 10.0
10
2022-07-13 CVE-2022-20222 Out-of-bounds Write vulnerability in Google Android 12.0/12.1
In read_attr_value of gatt_db.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
 10.0
10