Vulnerabilities > Google > Android > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-0978 | Missing Authorization vulnerability in Google Android 12.0 In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-08 | CVE-2021-25519 | Missing Authorization vulnerability in Google Android 10.0/11.0/9.0 An improper access control vulnerability in CPLC prior to SMR Dec-2021 Release 1 allows local attackers to access CPLC information without permission. | 3.3 |
| 2021-12-08 | CVE-2021-25515 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/9.0 An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows attackers to access BSSID. | 3.3 |
| 2021-12-08 | CVE-2021-25513 | Improper Privilege Management vulnerability in Google Android 11.0 An improper privilege management vulnerability in Apps Edge application prior to SMR Dec-2021 Release 1 allows unauthorized access to some device data on the lockscreen. | 2.4 |
| 2021-11-05 | CVE-2021-25501 | Unspecified vulnerability in Google Android 10.0/11.0 An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to SMR Nov-2021 Release 1 allows untrusted application to call some protected providers. | 3.3 |
| 2021-10-06 | CVE-2021-25486 | Unspecified vulnerability in Google Android Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in log. | 3.3 |
| 2021-10-06 | CVE-2021-25484 | Improper Authentication vulnerability in Google Android 10.0/11.0/8.1 Improper authentication in InputManagerService prior to SMR Oct-2021 Release 1 allows monitoring the touch event. | 3.3 |
| 2021-10-06 | CVE-2021-25472 | Unspecified vulnerability in Google Android An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021 Release 1 allows untrusted application to overwrite some Bluetooth information. | 3.3 |
| 2021-09-09 | CVE-2021-25457 | Improper Input Validation vulnerability in Google Android 10.0/11.0 An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memory information. | 3.3 |
| 2021-09-09 | CVE-2021-25455 | Out-of-bounds Read vulnerability in Google Android OOB read vulnerability in libsaviextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to access arbitrary address through pointer via forged avi file. | 3.3 |