Vulnerabilities > Google > Android > Low

DATE CVE VULNERABILITY TITLE RISK
2022-08-11 CVE-2022-20252 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20251 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20249 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20245 Unspecified vulnerability in Google Android 13.0.0
In WindowManager, there is a possible method to create a recording of the lock screen due to an insecure default value.
low complexity
google
2.4
2022-08-11 CVE-2022-20241 Improper Input Validation vulnerability in Google Android 13.0.0
In Messaging, there is a possible way to attach a private file to an SMS message due to improper input validation.
local
low complexity
google CWE-20
3.3
2022-08-10 CVE-2022-20358 Missing Authorization vulnerability in Google Android
In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected content of content providers due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-05 CVE-2022-33729 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper restriction of broadcasting Intent in ConfirmConnectActivity of?NFC prior to SMR Aug-2022 Release 1 leaks MAC address of the connected Bluetooth device.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33728 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Exposure of sensitive information in Bluetooth prior to SMR Aug-2022 Release 1 allows local attackers to access connected BT macAddress via Settings.Gloabal.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33726 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Unprotected dynamic receiver in Samsung Galaxy Friends prior to SMR Aug-2022 Release 1 allows attacker to launch activity.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33725 Unspecified vulnerability in Google Android 10.0/11.0
A vulnerability using PendingIntent in Knox VPN prior to SMR Aug-2022 Release 1 allows attackers to access content providers with system privilege.
local
low complexity
google
3.3