Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-09 | CVE-2022-36862 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0 A heap-based overflow vulnerability in HWR::EngineCJK::Impl::Construct() in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | 7.8 |
| 2022-09-09 | CVE-2022-36863 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0 A heap-based overflow vulnerability in GetCorrectDbLanguageTypeEsPKc function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR Sep-2022 Release 1 allows attacker to cause memory access fault. | 7.8 |
| 2022-09-09 | CVE-2022-39119 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In network service, there is a missing permission check. | 7.8 |
| 2022-09-06 | CVE-2022-26469 | Unsafe Reflection vulnerability in Google Android 11.0/12.0 In MtkEmail, there is a possible escalation of privilege due to fragment injection. | 7.8 |
| 2022-08-24 | CVE-2021-0891 | Improper Privilege Management vulnerability in Google Android An unprivileged app can trigger PowerVR driver to return an uninitialized heap memory causing information disclosure.Product: AndroidVersions: Android SoCAndroid ID: A-236849490 | 7.5 |
| 2022-08-24 | CVE-2021-0946 | Missing Initialization of Resource vulnerability in Google Android The method PVRSRVBridgePMRPDumpSymbolicAddr allocates puiMemspaceNameInt on the heap, fills the contents of the buffer via PMR_PDumpSymbolicAddr, and then copies the buffer to userspace. | 7.5 |
| 2022-08-24 | CVE-2021-0947 | Missing Initialization of Resource vulnerability in Google Android The method PVRSRVBridgeTLDiscoverStreams allocates puiStreamsInt on the heap, fills the contents of the buffer via TLServerDiscoverStreamsKM, and then copies the buffer to userspace. | 7.5 |
| 2022-08-12 | CVE-2022-20254 | Unspecified vulnerability in Google Android 13.0 In Wi-Fi, there is a permissions bypass. low complexity google | 8.8 |
| 2022-08-12 | CVE-2022-20258 | Unspecified vulnerability in Google Android 13.0 In Bluetooth, there is a possible way to bypass compiler exploit mitigations due to a configuration error. | 7.8 |
| 2022-08-12 | CVE-2022-20268 | Unspecified vulnerability in Google Android 13.0 In RestrictionsManager, there is a possible way to send a broadcast that should be restricted to system apps due to a permissions bypass. | 7.8 |