Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-22 | CVE-2021-0652 | Race Condition vulnerability in Google Android In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects. | 7.8 |
| 2021-10-22 | CVE-2021-0705 | Unspecified vulnerability in Google Android 10.0/11.0 In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running in foreground and keep granted permissions due to Bypass of Background Service Restrictions. | 7.8 |
| 2021-10-22 | CVE-2021-0708 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. | 7.8 |
| 2021-10-22 | CVE-2021-0870 | Race Condition vulnerability in Google Android In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition. | 8.1 |
| 2021-10-11 | CVE-2021-0583 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/9.0 In onCreate of BluetoothPairingDialog, there is a possible way to enable Bluetooth without user consent due to a tapjacking/overlay attack. | 7.3 |
| 2021-10-06 | CVE-2021-25470 | Unspecified vulnerability in Google Android 10.0/11.0/9.0 An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE. | 7.9 |
| 2021-10-06 | CVE-2021-25471 | Unspecified vulnerability in Google Android 10.0/8.1/9.0 A lack of replay attack protection in Security Mode Command process prior to SMR Oct-2021 Release 1 can lead to denial of service on mobile network connection and battery depletion. | 7.5 |
| 2021-10-06 | CVE-2021-25478 | Out-of-bounds Write vulnerability in Google Android A possible stack-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution. | 7.2 |
| 2021-10-06 | CVE-2021-25479 | Out-of-bounds Write vulnerability in Google Android A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution. | 7.2 |
| 2021-10-06 | CVE-2021-25480 | Authentication Bypass by Capture-replay vulnerability in Google Android A lack of replay attack protection in GUTI REALLOCATION COMMAND message process in Qualcomm modem prior to SMR Oct-2021 Release 1 can lead to remote denial of service on mobile network connection. | 7.5 |