Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-10 | CVE-2021-0465 | Out-of-bounds Write vulnerability in Google Android In GenerateFaceMask of face.cc, there is a possible out of bounds write due to an incorrect bounds check. | 7.8 |
| 2021-03-10 | CVE-2021-0464 | Out-of-bounds Write vulnerability in Google Android In sound_trigger_event_alloc of platform.h, there is a possible out of bounds write due to a heap buffer overflow. | 7.8 |
| 2021-03-10 | CVE-2021-0389 | Missing Authorization vulnerability in Google Android 11.0 In setNightModeActivated of UiModeManagerService.java, there is a missing permission check. | 7.8 |
| 2021-03-10 | CVE-2021-0388 | Missing Authorization vulnerability in Google Android 11.0 In onReceive of ImsPhoneCallTracker.java, there is a possible misattribution of data usage due to an incorrect broadcast handler. | 7.8 |
| 2021-03-10 | CVE-2021-0386 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 11.0 In onCreate of UsbConfirmActivity, there is a possible tapjacking vector due to an insecure default value. | 7.8 |
| 2021-03-10 | CVE-2021-0385 | Missing Authorization vulnerability in Google Android 11.0 In createConnectToAvailableNetworkNotification of ConnectToNetworkNotificationBuilder.java, there is a possible connection to untrusted WiFi networks due to notification interaction above the lockscreen. | 7.8 |
| 2021-03-10 | CVE-2021-0383 | Unspecified vulnerability in Google Android 11.0 In done of CaptivePortalLoginActivity.java, there is a confused deputy. | 7.8 |
| 2021-03-10 | CVE-2021-0380 | Missing Authorization vulnerability in Google Android 11.0 In onReceive of DcTracker.java, there is a possible way to trigger a provisioning URL and modify other telephony settings due to a missing permission check. | 7.8 |
| 2021-03-10 | CVE-2021-0399 | Use After Free vulnerability in Google Android In qtaguid_untag of xt_qtaguid.c, there is a possible memory corruption due to a use after free. | 7.8 |
| 2021-03-10 | CVE-2021-0398 | Unspecified vulnerability in Google Android 11.0 In bindServiceLocked of ActiveServices.java, there is a possible foreground service launch due to a confused deputy. | 7.8 |