Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-16 | CVE-2022-42544 | Injection vulnerability in Google Android 13.0 In getView of AddAppNetworksFragment.java, there is a possible way to mislead the user about network add requests due to improper input validation. | 7.8 |
| 2022-12-13 | CVE-2021-39660 | Race Condition vulnerability in Google Android In TBD of TBD, there is a possible way to archive arbitrary code execution in kernel due to a race condition. | 7.0 |
| 2022-12-13 | CVE-2022-20411 | Out-of-bounds Write vulnerability in Google Android In avdt_msg_asmbl of avdt_msg.cc, there is a possible out of bounds write due to a missing bounds check. | 8.8 |
| 2022-12-13 | CVE-2022-20442 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/11.0/12.0 In onCreate of ReviewPermissionsActivity.java, there is a possible way to grant permissions for a separate app with API level < 23 due to a tapjacking/overlay attack. | 7.3 |
| 2022-12-13 | CVE-2022-20469 | Out-of-bounds Write vulnerability in Google Android In avct_lcb_msg_asmbl of avct_lcb_act.cc, there is a possible out of bounds write due to a missing bounds check. | 8.8 |
| 2022-12-13 | CVE-2022-20470 | Improper Input Validation vulnerability in Google Android In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. | 7.8 |
| 2022-12-13 | CVE-2022-20474 | Unspecified vulnerability in Google Android In readLazyValue of Parcel.java, there is a possible loading of arbitrary code into the System Settings app due to a confused deputy. | 7.8 |
| 2022-12-13 | CVE-2022-20475 | Unspecified vulnerability in Google Android In test of ResetTargetTaskHelper.java, there is a possible hijacking of any app which sets allowTaskReparenting="true" due to a confused deputy. | 7.8 |
| 2022-12-13 | CVE-2022-20477 | Unspecified vulnerability in Google Android 13.0 In shouldHideNotification of KeyguardNotificationVisibilityProvider.kt, there is a possible way to show hidden notifications due to a logic error in the code. | 7.8 |
| 2022-12-13 | CVE-2022-20478 | Allocation of Resources Without Limits or Throttling vulnerability in Google Android In NotificationChannel of NotificationChannel.java, there is a possible failure to persist permissions settings due to resource exhaustion. | 7.8 |