Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-15 | CVE-2020-27024 | Out-of-bounds Read vulnerability in Google Android 11.0 In smp_br_state_machine_event of smp_br_main.cc, there is a possible out of bounds read due to a missing bounds check. | 7.5 |
| 2020-12-15 | CVE-2020-0489 | Out-of-bounds Write vulnerability in Google Android 11.0 In Parse_data of eas_mdls.c, there is a possible out of bounds write due to a missing bounds check. | 8.8 |
| 2020-12-15 | CVE-2020-0486 | Incorrect Default Permissions vulnerability in Google Android 11.0 In openAssetFileListener of ContactsProvider2.java, there is a possible permission bypass due to an insecure default value. | 7.8 |
| 2020-12-15 | CVE-2020-0485 | Missing Authorization vulnerability in Google Android 11.0 In areFunctionsSupported of UsbBackend.java, there is a possible access to tethering from a guest account due to a missing permission check. | 7.8 |
| 2020-12-15 | CVE-2020-0480 | Missing Authorization vulnerability in Google Android 11.0 In callUnchecked of DocumentsProvider.java, there is a possible permissions bypass due to a missing permission check. | 7.8 |
| 2020-12-15 | CVE-2020-0479 | Incorrect Authorization vulnerability in Google Android 11.0 In callUnchecked of DocumentsProvider.java, there is a possible permissions bypass. | 7.8 |
| 2020-12-15 | CVE-2020-0478 | Out-of-bounds Write vulnerability in Google Android 11.0 In extend_frame_lowbd of restoration.c, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2020-12-15 | CVE-2020-0475 | Missing Authorization vulnerability in Google Android 11.0 In createInputConsumer of WindowManagerService.java, there is a possible way to block and intercept input events due to a missing permission check. | 7.8 |
| 2020-12-15 | CVE-2020-0474 | Use After Free vulnerability in Google Android 11.0 In HalCamera::requestNewFrame of HalCamera.cpp, there is a possible use-after-free due to a race condition. | 7.0 |
| 2020-12-14 | CVE-2020-0016 | Use of Hard-coded Credentials vulnerability in Google Android In the Broadcom Nexus firmware, there is an insecure default password. | 7.8 |