Vulnerabilities > Google > Android > Low

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2022-33700 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log.
local
low complexity
google CWE-668
2.3
2022-07-12 CVE-2022-33699 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log.
local
low complexity
google CWE-668
2.3
2022-07-12 CVE-2022-33698 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in Telecom application prior to SMR Jul-2022 Release 1 allows local attackers to access ICCID via log.
local
low complexity
google CWE-668
3.3
2022-07-12 CVE-2022-33697 Information Exposure Through Log Files vulnerability in Google Android 10.0/11.0/12.0
Sensitive information exposure vulnerability in ImsServiceSwitchBase in ImsCore prior to SMR Jul-2022 Release 1 allows local attackers with log access permission to get IMSI through device log.
local
low complexity
google CWE-532
3.3
2022-07-12 CVE-2022-33696 Exposure of Resource to Wrong Sphere vulnerability in Google Android 12.0
Exposure of Sensitive Information in Telephony service prior to SMR Jul-2022 Release 1 allows local attacker to access imsi and iccid via log.
local
low complexity
google CWE-668
3.3
2022-07-12 CVE-2022-33694 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in CSC application prior to SMR Jul-2022 Release 1 allows local attacker to access wifi information via unprotected intent broadcasting.
local
low complexity
google CWE-668
3.3
2022-07-12 CVE-2022-33693 Information Exposure Through Log Files vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in CID Manager prior to SMR Jul-2022 Release 1 allows local attacker to access iccid via log.
local
low complexity
google CWE-532
2.3
2022-07-12 CVE-2022-33692 Exposure of Resource to Wrong Sphere vulnerability in Google Android 11.0/12.0
Exposure of Sensitive Information in Messaging application prior to SMR Jul-2022 Release 1 allows local attacker to access imsi and iccid via log.
local
low complexity
google CWE-668
3.3
2022-07-12 CVE-2022-33690 Path Traversal vulnerability in Google Android 12.0
Improper input validation in Contacts Storage prior to SMR Jul-2022 Release 1 allows attacker to access arbitrary file.
local
low complexity
google CWE-22
3.3
2022-07-12 CVE-2022-33689 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in TelephonyUI prior to SMR Jul-2022 Release 1 allows attackers to change preferred network type by unprotected binder call.
local
low complexity
google
3.3