Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-19 | CVE-2018-9341 | Out-of-bounds Write vulnerability in Google Android In impeg2d_mc_fullx_fully of impeg2d_mc.c there is a possible out of bound write due to missing bounds check. | 7.8 |
| 2024-11-19 | CVE-2018-9344 | Improper Locking vulnerability in Google Android 8.1 In several functions of DescramblerImpl.cpp, there is a possible use after free due to improper locking. | 7.8 |
| 2024-11-19 | CVE-2017-13315 | Incorrect Calculation of Buffer Size vulnerability in Google Android In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to a write size mismatch. | 7.8 |
| 2024-11-19 | CVE-2018-9338 | Out-of-bounds Write vulnerability in Google Android In ResStringPool::setTo of ResourceTypes.cpp, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2024-11-19 | CVE-2023-21270 | Incorrect Authorization vulnerability in Google Android 12.0/12.1/13.0 In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an app to keep permissions that should be revoked due to incorrect permission flags cleared during an update. | 7.8 |
| 2024-11-15 | CVE-2017-13310 | Incorrect Default Permissions vulnerability in Google Android In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading to a permissions bypass. | 7.8 |
| 2024-11-15 | CVE-2017-13312 | Unspecified vulnerability in Google Android 8.0 In createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to improper input validation. | 7.8 |
| 2024-11-15 | CVE-2017-13314 | Missing Authorization vulnerability in Google Android In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings bypass due to a missing permission check. | 7.8 |
| 2024-11-13 | CVE-2023-35659 | Unspecified vulnerability in Google Android In DevmemIntChangeSparse of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. | 7.8 |
| 2024-11-13 | CVE-2023-35686 | Unspecified vulnerability in Google Android In PVRSRVRGXKickTA3DKM of rgxta3d.c, there is a possible arbitrary code execution due to improper input validation. | 7.8 |