Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-13 | CVE-2022-20501 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android In onCreate of EnableAccountPreferenceActivity.java, there is a possible way to mislead the user into enabling a malicious phone account due to a tapjacking/overlay attack. | 7.3 |
| 2022-12-13 | CVE-2022-20611 | Incorrect Default Permissions vulnerability in Google Android In deletePackageVersionedInternal of DeletePackageHelper.java, there is a possible way to bypass carrier restrictions due to a permissions bypass. | 7.8 |
| 2022-12-08 | CVE-2022-39907 | Integer Overflow or Wraparound vulnerability in Google Android Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write. | 7.8 |
| 2022-12-08 | CVE-2022-39908 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write. | 7.4 |
| 2022-12-06 | CVE-2022-39090 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39091 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39092 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39093 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39094 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39095 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |