Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-11 | CVE-2020-27059 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In onAuthenticated of AuthenticationClient.java, there is a possible tapjacking attack when requesting the user's fingerprint due to an overlaid window. | 7.8 |
| 2021-01-05 | CVE-2021-22492 | Classic Buffer Overflow vulnerability in Google Android An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Broadcom Bluetooth chipsets) software. | 8.8 |
| 2020-12-24 | CVE-2020-35693 | Unspecified vulnerability in Google Android On some Samsung phones and tablets running Android through 7.1.1, it is possible for an attacker-controlled Bluetooth Low Energy (BLE) device to pair silently with a vulnerable target device, without any user interaction, when the target device's Bluetooth is on, and it is running an app that offers a connectable BLE advertisement. low complexity google | 8.8 |
| 2020-12-18 | CVE-2020-35555 | Unspecified vulnerability in Google Android 10.0 An issue was discovered on LG mobile devices with Android OS 10 software. | 7.8 |
| 2020-12-18 | CVE-2020-35554 | Unspecified vulnerability in Google Android An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. | 7.8 |
| 2020-12-18 | CVE-2020-35553 | Improper Restriction of Power Consumption vulnerability in Google Android 10.0/11.0 An issue was discovered on Samsung mobile devices with Q(10.0) and R(11.0) (Qualcomm SM8250 chipsets) software. | 7.5 |
| 2020-12-15 | CVE-2020-27055 | Missing Encryption of Sensitive Data vulnerability in Google Android 11.0 In isSubmittable and showWarningMessagesIfAppropriate of WifiConfigController.java and WifiConfigController2.java, there is a possible insecure WiFi configuration due to improper input validation. | 7.5 |
| 2020-12-15 | CVE-2020-27054 | Missing Authorization vulnerability in Google Android 11.0 In onFactoryReset of BluetoothManagerService.java, there is a missing permission check. | 7.8 |
| 2020-12-15 | CVE-2020-27052 | Missing Authorization vulnerability in Google Android 11.0 In getLockTaskLaunchMode of ActivityRecord.java, there is a possible way for any app to start in Lock Task Mode due to a permissions bypass. | 7.8 |
| 2020-12-15 | CVE-2020-27051 | Integer Overflow or Wraparound vulnerability in Google Android 11.0 In NFA_RwI93WriteMultipleBlocks of nfa_rw_api.cc, there is a possible out of bounds write due to an integer overflow. | 7.8 |