Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-10 | CVE-2022-20114 | Improper Privilege Management vulnerability in Google Android In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. | 7.2 |
| 2022-05-10 | CVE-2022-20116 | Unspecified vulnerability in Google Android 12.0/12.1 In onEntryUpdated of OngoingCallController.kt, it is possible to launch non-exported activities due to intent redirection. | 7.2 |
| 2022-05-03 | CVE-2022-20109 | Unspecified vulnerability in Google Android In ion, there is a possible use after free due to improper update of reference count. | 7.8 |
| 2022-05-03 | CVE-2022-20110 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android In ion, there is a possible use after free due to a race condition. | 7.0 |
| 2022-05-03 | CVE-2022-28781 | Improper Input Validation vulnerability in Google Android 11.0/12.0 Improper input validation in Settings prior to SMR-May-2022 Release 1 allows attackers to launch arbitrary activity with system privilege. | 7.2 |
| 2022-04-12 | CVE-2021-0694 | Incorrect Authorization vulnerability in Google Android 11.0 In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. | 7.2 |
| 2022-04-12 | CVE-2021-0707 | Use After Free vulnerability in Google Android In dma_buf_release of dma-buf.c, there is a possible memory corruption due to a use after free. | 7.2 |
| 2022-04-12 | CVE-2021-39794 | Incorrect Default Permissions vulnerability in Google Android 11.0/12.0/12.1 In broadcastPortInfo of AdbService.java, there is a possible way for apps to run code as the shell user, if wireless debugging is enabled, due to a missing permission check. | 7.6 |
| 2022-04-12 | CVE-2021-39797 | Improper Privilege Management vulnerability in Google Android 12.0/12.1 In several functions of of LauncherApps.java, there is a possible escalation of privilege due to a logic error in the code. | 7.2 |
| 2022-04-12 | CVE-2021-39798 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 12.0/12.1 In Bitmap_createFromParcel of Bitmap.cpp, there is a possible arbitrary code execution due to a missing bounds check. | 7.2 |