Vulnerabilities > Google > Android > Low

DATE CVE VULNERABILITY TITLE RISK
2022-08-12 CVE-2022-20262 Missing Authorization vulnerability in Google Android 13.0
In ActivityManager, there is a possible way to check another process's capabilities due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20261 Missing Authorization vulnerability in Google Android 13.0
In LocationManager, there is a possible way to get location information due to a missing permission check.
local
low complexity
google CWE-862
2.3
2022-08-12 CVE-2022-20257 Unspecified vulnerability in Google Android 13.0
In Bluetooth, there is a possible way to pair a display only device without PIN confirmation due to a logic error in the code.
local
low complexity
google
3.3
2022-08-11 CVE-2022-20252 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20251 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20249 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20245 Unspecified vulnerability in Google Android 13.0.0
In WindowManager, there is a possible method to create a recording of the lock screen due to an insecure default value.
low complexity
google
2.4
2022-08-11 CVE-2022-20241 Improper Input Validation vulnerability in Google Android 13.0.0
In Messaging, there is a possible way to attach a private file to an SMS message due to improper input validation.
local
low complexity
google CWE-20
3.3
2022-08-10 CVE-2022-20358 Missing Authorization vulnerability in Google Android
In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected content of content providers due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-05 CVE-2022-33729 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper restriction of broadcasting Intent in ConfirmConnectActivity of?NFC prior to SMR Aug-2022 Release 1 leaks MAC address of the connected Bluetooth device.
local
low complexity
google
3.3