Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-11 | CVE-2021-0312 | Integer Overflow or Wraparound vulnerability in Google Android In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. | 7.1 |
| 2021-01-11 | CVE-2021-0311 | Out-of-bounds Write vulnerability in Google Android In ElementaryStreamQueue::dequeueAccessUnitH264() of ESQueue.cpp, there is a possible out of bounds write due to a missing bounds check. | 7.1 |
| 2021-01-11 | CVE-2021-0310 | Use After Free vulnerability in Google Android 11.0 In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. | 7.2 |
| 2021-01-11 | CVE-2021-0308 | Out-of-bounds Write vulnerability in multiple products In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. | 7.2 |
| 2021-01-11 | CVE-2021-0307 | Unspecified vulnerability in Google Android 10.0/11.0 In updatePermissionSourcePackage of PermissionManagerService.java, there is a possible automatic runtime permission grant due to a confused deputy. | 7.2 |
| 2021-01-11 | CVE-2021-0306 | Improper Privilege Management vulnerability in Google Android In addAllPermissions of PermissionManagerService.java, there is a possible permissions bypass when upgrading major Android versions which allows an app to gain the android.permission.ACTIVITY_RECOGNITION permission without user confirmation. | 7.2 |
| 2021-01-11 | CVE-2020-0471 | Improper Privilege Management vulnerability in Google Android In reassemble_and_dispatch of packet_fragmenter.cc, there is a possible way to inject packets into an encrypted Bluetooth connection due to improper input validation. | 7.5 |
| 2021-01-05 | CVE-2021-22495 | Out-of-bounds Write vulnerability in Google Android An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), Q(10.0), and R(11.0) (Exynos chipsets) software. | 7.1 |
| 2020-12-18 | CVE-2020-35553 | Improper Restriction of Power Consumption vulnerability in Google Android 10.0/11.0 An issue was discovered on Samsung mobile devices with Q(10.0) and R(11.0) (Qualcomm SM8250 chipsets) software. | 7.8 |
| 2020-12-18 | CVE-2020-35551 | Authentication Bypass by Capture-replay vulnerability in Google Android An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. | 7.5 |