Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-27 CVE-2017-13319 Classic Buffer Overflow vulnerability in Google Android
In pvmp3_get_main_data_size of pvmp3_get_main_data_size.cpp, there is a possible buffer overread due to a missing bounds check.
network
low complexity
google CWE-120
7.5
2024-11-20 CVE-2018-9470 Out-of-bounds Write vulnerability in Google Android
In bff_Scanner_addOutPos of Scanner.c, there is a possible out-of-bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
8.8
2024-11-20 CVE-2018-9471 Type Confusion vulnerability in Google Android
In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to type confusion.
local
low complexity
google CWE-843
7.8
2024-11-20 CVE-2018-9472 Integer Overflow or Wraparound vulnerability in Google Android
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer overflow.
network
low complexity
google CWE-190
8.8
2024-11-20 CVE-2018-9474 Deserialization of Untrusted Data vulnerability in Google Android
In writeToParcel of MediaPlayer.java, there is a possible serialization/deserialization mismatch due to improper input validation.
local
low complexity
google CWE-502
7.8
2024-11-20 CVE-2018-9475 Out-of-bounds Write vulnerability in Google Android
In HeadsetInterface::ClccResponse of btif_hf.cc, there is a possible out of bounds stack write due to a missing bounds check.
low complexity
google CWE-787
8.8
2024-11-20 CVE-2018-9477 Missing Authorization vulnerability in Google Android 8.0/8.1
In the development options section of the Settings app, there is a possible authentication bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8
2024-11-20 CVE-2018-9484 Out-of-bounds Read vulnerability in Google Android
In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2024-11-20 CVE-2018-9468 Unspecified vulnerability in Google Android
In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a permissions bypass.
local
low complexity
google
7.1
2024-11-20 CVE-2018-9469 Missing Authorization vulnerability in Google Android
In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut due to a missing permission check.
local
low complexity
google CWE-862
7.8