Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-24 | CVE-2023-20953 | Unspecified vulnerability in Google Android 13.0 In onPrimaryClipChanged of ClipboardListener.java, there is a possible way to bypass factory reset protection due to incorrect UI being shown prior to setup completion. | 7.8 |
| 2023-03-24 | CVE-2023-20955 | Missing Authorization vulnerability in Google Android In onPrepareOptionsMenu of AppInfoDashboardFragment.java, there is a possible way to bypass admin restrictions and uninstall applications for all users due to a missing permission check. | 7.8 |
| 2023-03-24 | CVE-2023-20957 | Unspecified vulnerability in Google Android 11.0/12.0/12.1 In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protections due to a confused deputy. | 7.8 |
| 2023-03-24 | CVE-2023-20958 | Out-of-bounds Read vulnerability in Google Android 13.0 In read_paint of ttcolr.c, there is a possible out of bounds read due to a heap buffer overflow. | 7.1 |
| 2023-03-24 | CVE-2023-20959 | Missing Authorization vulnerability in Google Android 13.0 In AddSupervisedUserActivity, guest users are not prevented from starting the activity due to missing permissions checks. | 7.8 |
| 2023-03-24 | CVE-2023-20960 | Improper Input Validation vulnerability in Google Android 12.1/13.0 In launchDeepLinkIntentToRight of SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities due to improper input validation. | 8.8 |
| 2023-03-24 | CVE-2023-20963 | Improper Certificate Validation vulnerability in Google Android In WorkSource, there is a possible parcel mismatch. | 7.8 |
| 2023-03-24 | CVE-2023-20964 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a confused deputy. | 7.8 |
| 2023-03-24 | CVE-2023-20966 | Out-of-bounds Write vulnerability in Google Android In inflate of inflate.c, there is a possible out of bounds write due to a heap buffer overflow. | 7.8 |
| 2023-03-24 | CVE-2023-20971 | Unspecified vulnerability in Google Android 13.0 In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. | 7.8 |