Vulnerabilities > Google > Android > Low

DATE CVE VULNERABILITY TITLE RISK
2022-08-12 CVE-2022-20318 Information Exposure Through Discrepancy vulnerability in Google Android 13.0
In PackageInstaller, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-12 CVE-2022-20316 Information Exposure Through Discrepancy vulnerability in Google Android 13.0
In ContentResolver, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-12 CVE-2022-20315 Missing Authorization vulnerability in Google Android 13.0
In ActivityManager, there is a possible disclosure of installed packages due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20311 Missing Authorization vulnerability in Google Android 13.0
In Telecomm, there is a possible disclosure of registered self managed phone accounts due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20310 Missing Authorization vulnerability in Google Android 13.0
In Telecomm, there is a possible disclosure of registered self managed phone accounts due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20309 Information Exposure Through Discrepancy vulnerability in Google Android 13.0
In PackageInstaller, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-12 CVE-2022-20307 Information Exposure Through Discrepancy vulnerability in Google Android 13.0
In AlarmManagerService, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-12 CVE-2022-20305 Missing Authorization vulnerability in Google Android 13.0
In ContentService, there is a possible disclosure of available account types due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20280 SQL Injection vulnerability in Google Android 13.0
In MMSProvider, there is a possible read of protected data due to improper input validationSQL injection.
local
low complexity
google CWE-89
3.3
2022-08-12 CVE-2022-20267 Missing Authorization vulnerability in Google Android 13.0
In bluetooth, there is a possible way to enable or disable bluetooth connection without user consent due to a missing permission check.
local
low complexity
google CWE-862
3.3