Vulnerabilities > Google > Android > Low

DATE CVE VULNERABILITY TITLE RISK
2020-03-10 CVE-2020-0047 Missing Authorization vulnerability in Google Android 10.0
In setMasterMute of AudioService.java, there is a missing permission check.
local
low complexity
google CWE-862
3.3
2020-03-10 CVE-2020-0029 Information Exposure vulnerability in Google Android 10.0
In the WifiConfigManager, there is a possible storage of location history which can only be deleted by triggering a factory reset.
local
low complexity
google CWE-200
2.3
2020-02-12 CVE-2011-2343 Information Exposure vulnerability in Google Android
The Bluetooth stack in Android before 2.3.6 allows a physically proximate attacker to obtain contact information via an AT phonebook transfer.
low complexity
google CWE-200
2.4
2019-09-27 CVE-2018-9581 Information Exposure vulnerability in Google Android 10.0
In WiFi, the RSSI value and SSID information is broadcast as part of android.net.wifi.RSSI_CHANGE and android.net.wifi.STATE_CHANGE intents.
local
low complexity
google CWE-200
3.3
2019-09-27 CVE-2019-9277 Information Exposure Through Log Files vulnerability in Google Android 10.0
In the proc filesystem, there is a possible information disclosure due to log information disclosure.
local
low complexity
google CWE-532
3.3
2019-09-27 CVE-2019-9280 Unspecified vulnerability in Google Android 10.0
In keyguard, there is a possible escalation of privilege due to improper permission checks.
local
low complexity
google
3.3
2019-09-27 CVE-2019-9292 Unspecified vulnerability in Google Android 10.0
In the Activity Manager service, there is a possible information disclosure due to a confused deputy.
local
low complexity
google
3.3
2019-09-27 CVE-2019-9351 Missing Authorization vulnerability in Google Android 10.0
In SyncStatusObserver, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check.
local
low complexity
google CWE-862
3.3
2019-09-27 CVE-2019-9364 Incorrect Authorization vulnerability in Google Android 10.0
In AudioService, there is a possible trigger of background user audio due to a permissions bypass.
local
low complexity
google CWE-863
3.3
2019-09-27 CVE-2019-9377 Missing Authorization vulnerability in Google Android 10.0
In FingerprintService, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check.
local
low complexity
google CWE-862
3.3