Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2019-06-19 CVE-2019-2023 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 8.0/8.1/9.0
In ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller.
local
low complexity
google CWE-732
7.8
2019-06-19 CVE-2019-2018 Improper Authentication vulnerability in Google Android 8.1/9.0
In resetPasswordInternal of DevicePolicyManagerService.java, there is a possible bypass of password reset protection due to an unusual root cause.
network
low complexity
google CWE-287
8.8
2019-06-19 CVE-2019-2017 Out-of-bounds Write vulnerability in Google Android
In rw_t2t_handle_tlv_detect_rsp of rw_t2t_ndef.cc, there is a possible out-of-bound write due to a missing bounds check.
local
low complexity
google CWE-787
7.8
2019-06-19 CVE-2019-2003 Permissions, Privileges, and Access Controls vulnerability in Google Android
In addLinks of Linkify.java, there is a possible phishing vector due to an unusual root cause.
network
low complexity
google CWE-264
8.8
2019-06-19 CVE-2019-2016 Out-of-bounds Write vulnerability in Google Android
In NFA_SendRawFrame of nfa_dm_api.cc, there is a possible out-of-bound write due to improper input validation.
network
low complexity
google CWE-787
8.8
2019-06-19 CVE-2019-2015 Out-of-bounds Write vulnerability in Google Android
In rw_t3t_act_handle_check_rsp of rw_t3t.cc, there is a possible out-of-bound write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
2019-06-19 CVE-2019-2014 Out-of-bounds Write vulnerability in Google Android
In rw_t3t_handle_get_sc_poll_rsp of rw_t3t.cc, there is a possible out-of-bound write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
2019-06-19 CVE-2019-2013 Out-of-bounds Write vulnerability in Google Android
In rw_t3t_act_handle_sro_rsp of rw_t3t.cc, there is a possible out-of-bound write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
2019-06-19 CVE-2019-2012 Out-of-bounds Write vulnerability in Google Android
In rw_t3t_act_handle_fmt_rsp of rw_t3t.cc, there is a possible out-of-bound write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
2019-06-19 CVE-2019-2011 Out-of-bounds Write vulnerability in Google Android 8.0/8.1/9.0
In readNullableNativeHandleNoDup of Parcel.cpp, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
7.8