Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2021-0593 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android In sendDevicePickedIntent of DevicePickerFragment.java, there is a possible way to invoke a privileged broadcast receiver due to a confused deputy. | 7.8 |
| 2021-08-17 | CVE-2021-0640 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0/9.0 In noteAtomLogged of StatsdStats.cpp, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2021-08-17 | CVE-2021-0645 | Incorrect Authorization vulnerability in Google Android 11.0 In shouldBlockFromTree of ExternalStorageProvider.java, there is a possible permissions bypass. | 7.8 |
| 2021-08-17 | CVE-2021-0646 | Out-of-bounds Write vulnerability in Google Android In sqlite3_str_vappendf of sqlite3.c, there is a possible out of bounds write due to improper input validation. | 7.8 |
| 2021-07-14 | CVE-2020-0417 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0/8.1/9.0 In setNiNotification of GpsNetInitiatedHandler.java, there is a possible permissions bypass due to an empty mutable PendingIntent. | 7.8 |
| 2021-07-14 | CVE-2021-0441 | Incorrect Default Permissions vulnerability in Google Android 11.0 In onCreate of PermissionActivity.java, there is a possible permission bypass due to Confusing UI. | 7.3 |
| 2021-07-14 | CVE-2021-0486 | Incorrect Default Permissions vulnerability in Google Android 10.0/11.0 In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. | 7.8 |
| 2021-07-14 | CVE-2021-0514 | Race Condition vulnerability in Google Android In several functions of the V8 library, there is a possible use after free due to a race condition. | 8.1 |
| 2021-07-14 | CVE-2021-0577 | Out-of-bounds Write vulnerability in Google Android In flv extractor, there is a possible out of bounds write due to a heap buffer overflow. | 7.8 |
| 2021-07-14 | CVE-2021-0586 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In onCreate of DevicePickerFragment.java, there is a possible way to trick the user to select an unwanted bluetooth device due to a tapjacking/overlay attack. | 7.8 |