Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-28 | CVE-2022-20443 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 13.0 In hasInputInfo of Layer.cpp, there is a possible bypass of user interaction requirements due to a tapjacking/overlay attack. | 7.8 |
| 2023-06-28 | CVE-2023-21147 | Use After Free vulnerability in Google Android In lwis_i2c_device_disable of lwis_device_i2c.c, there is a possible UAF due to a logic error in the code. | 7.8 |
| 2023-06-28 | CVE-2023-21149 | Missing Authorization vulnerability in Google Android In registerGsmaServiceIntentReceiver of ShannonRcsService.java, there is a possible way to activate/deactivate RCS service due to a missing permission check. | 7.8 |
| 2023-06-28 | CVE-2023-21172 | Unspecified vulnerability in Google Android 13.0 In multiple functions of WifiCallingSettings.java, there is a possible way to change calling preferences for the admin user due to a permissions bypass. | 7.8 |
| 2023-06-28 | CVE-2023-21174 | Unspecified vulnerability in Google Android 13.0 In isPageSearchEnabled of BillingCycleSettings.java, there is a possible way for the guest user to change data limits due to a permissions bypass. | 7.8 |
| 2023-06-28 | CVE-2023-21175 | Unspecified vulnerability in Google Android 13.0 In onCreate of DataUsageSummary.java, there is a possible method for a guest user to enable or disable mobile data due to a permissions bypass. | 7.8 |
| 2023-06-28 | CVE-2023-21179 | Unspecified vulnerability in Google Android 13.0 In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. | 7.8 |
| 2023-06-28 | CVE-2023-21180 | Out-of-bounds Read vulnerability in Google Android 13.0 In xmlParseTryOrFinish of parser.c, there is a possible out of bounds read due to a heap buffer overflow. | 7.5 |
| 2023-06-28 | CVE-2023-21183 | Unspecified vulnerability in Google Android 13.0 In ForegroundUtils of ForegroundUtils.java, there is a possible way to read NFC tag data while the app is still in the background due to a logic error in the code. | 7.8 |
| 2023-06-28 | CVE-2023-21184 | Unspecified vulnerability in Google Android 13.0 In getCurrentPrivilegedPackagesForAllUsers of CarrierPrivilegesTracker.java, there is a possible permission bypass due to a logic error in the code. | 7.8 |