Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-13 CVE-2024-34729 Unspecified vulnerability in Google Android
In multiple locations, there is a possible arbitrary code execution due to a logic error in the code.
local
low complexity
google
7.8
2024-11-13 CVE-2024-34747 Use After Free vulnerability in Google Android
In DevmemXIntMapPages of devicemem_server.c, there is a possible use-after-free due to a logic error in the code.
local
low complexity
google CWE-416
7.8
2024-11-13 CVE-2024-40660 Unspecified vulnerability in Google Android 14.0/15.0
In setTransactionState of SurfaceFlinger.cpp, there is a possible way to change protected display attributes due to a logic error in the code.
local
low complexity
google
7.8
2024-11-13 CVE-2024-40661 Missing Authorization vulnerability in Google Android
In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to access the microphone due to a missing permission check.
local
low complexity
google CWE-862
7.8
2024-11-13 CVE-2024-40671 Missing Authorization vulnerability in Google Android
In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible way to achieve arbitrary code execution due to a missing permission check.
local
low complexity
google CWE-862
7.8
2024-11-13 CVE-2024-43080 Deserialization of Untrusted Data vulnerability in Google Android
In onReceive of AppRestrictionsFragment.java, there is a possible escalation of privilege due to unsafe deserialization.
local
low complexity
google CWE-502
7.8
2024-11-13 CVE-2024-43081 Unspecified vulnerability in Google Android
In installExistingPackageAsUser of InstallPackageHelper.java, there is a possible carrier restriction bypass due to a logic error in the code.
local
low complexity
google
7.8
2024-11-13 CVE-2024-43085 Unspecified vulnerability in Google Android
In handleMessage of UsbDeviceManager.java, there is a possible method to access device contents over USB without unlocking the device due to a logic error in the code.
local
low complexity
google
7.8
2024-11-13 CVE-2024-43087 Unspecified vulnerability in Google Android
In getInstalledAccessibilityPreferences of AccessibilitySettings.java, there is a possible way to hide an enabled accessibility service in the accessibility service settings due to a logic error in the code.
local
low complexity
google
7.8
2024-11-13 CVE-2024-43088 Missing Authorization vulnerability in Google Android
In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission settings belonging to another user on the device due to a missing permission check.
local
low complexity
google CWE-862
7.8