Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-25412 | Unspecified vulnerability in Google Android 10.0 An improper access control vulnerability in genericssoservice prior to SMR JUN-2021 Release 1 allows local attackers to execute protected activity with system privilege via untrusted applications. | 7.8 |
| 2021-06-11 | CVE-2021-25414 | Unspecified vulnerability in Google Android 10.0/11.0/9.0 Improper sanitization of incoming intent in Samsung Contacts prior to SMR JUN-2021 Release 1 allows local attackers to copy or overwrite arbitrary files with Samsung Contacts privilege. | 7.8 |
| 2021-06-11 | CVE-2021-25417 | Unspecified vulnerability in Google Android 10.0/9.0 Improper authorization in SDP SDK prior to SMR JUN-2021 Release 1 allows access to internal storage. | 7.5 |
| 2021-04-13 | CVE-2021-0446 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 11.0 In ImportVCardActivity, there is a possible way to bypass user consent due to a tapjacking/overlay attack. | 7.3 |
| 2021-04-13 | CVE-2021-0445 | Unspecified vulnerability in Google Android 11.0/9.0 In start of WelcomeActivity.java, there is a possible residual profile due to a confused deputy. | 7.8 |
| 2021-04-13 | CVE-2021-0442 | Use After Free vulnerability in Google Android 11.0 In updateInfo of android_hardware_input_InputApplicationHandle.cpp, there is a possible control of code flow due to a use after free. | 7.8 |
| 2021-04-13 | CVE-2021-0439 | Out-of-bounds Write vulnerability in Google Android 11.0 In setPowerModeWithHandle of com_android_server_power_PowerManagerService.cpp, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2021-04-13 | CVE-2021-0438 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/8.1/9.0 In several functions of InputDispatcher.cpp, WindowManagerService.java, and related files, there is a possible tapjacking attack due to an incorrect FLAG_OBSCURED value. | 7.8 |
| 2021-04-13 | CVE-2021-0437 | Double Free vulnerability in Google Android In setPlayPolicy of DrmPlugin.cpp, there is a possible double free. | 7.8 |
| 2021-04-13 | CVE-2021-0435 | Improper Initialization vulnerability in Google Android In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to uninitialized data. | 7.5 |