Vulnerabilities > Google > Android > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-11-04 CVE-2024-20114 Out-of-bounds Write vulnerability in Google Android
In ccu, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
6.7
2024-10-25 CVE-2024-44099 Incorrect Authorization vulnerability in Google Android
There is a possible Local bypass of user interaction due to an insecure default value.
local
low complexity
google CWE-863
5.5
2024-10-25 CVE-2024-47018 Out-of-bounds Read vulnerability in Google Android
In pmucal_rae_handle_seq_int of flexpmu_cal_rae.c, there is a possible out of bounds read due to a buffer overflow.
local
low complexity
google CWE-125
5.5
2024-10-25 CVE-2024-47019 Out-of-bounds Read vulnerability in Google Android
In ProtocolEmbmsSaiListAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
2024-10-25 CVE-2024-47025 Unspecified vulnerability in Google Android
In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error in the code.
local
low complexity
google
5.5
2024-10-25 CVE-2024-47026 Out-of-bounds Read vulnerability in Google Android
In gsc_gsa_rescue of gsc_gsa.c, there is a possible out of bounds read due to an incorrect bounds check.
local
low complexity
google CWE-125
5.5
2024-10-25 CVE-2024-47028 Integer Overflow or Wraparound vulnerability in Google Android
In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow.
local
low complexity
google CWE-190
4.4
2024-10-25 CVE-2024-47029 Out-of-bounds Read vulnerability in Google Android
In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check.
local
low complexity
google CWE-125
5.5
2024-10-25 CVE-2024-47034 Out-of-bounds Read vulnerability in Google Android
there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
2024-10-09 CVE-2024-39436 Command Injection vulnerability in Google Android 13.0/14.0
In linkturbonative service, there is a possible command injection due to improper input validation.
local
low complexity
google CWE-77
6.7