Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-03 | CVE-2022-32647 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0 In ccu, there is a possible out of bounds write due to improper input validation. | 6.7 |
| 2023-01-03 | CVE-2022-32648 | Improper Synchronization vulnerability in Google Android 11.0/12.0 In disp, there is a possible use after free due to a race condition. | 6.4 |
| 2023-01-03 | CVE-2022-32649 | Incorrect Calculation of Buffer Size vulnerability in Google Android 12.0 In jpeg, there is a possible use after free due to a logic error. | 6.7 |
| 2023-01-03 | CVE-2022-32650 | Incorrect Calculation of Buffer Size vulnerability in Google Android 12.0/13.0 In mtk-isp, there is a possible use after free due to a logic error. | 6.7 |
| 2023-01-03 | CVE-2022-32651 | Incorrect Calculation of Buffer Size vulnerability in Google Android 12.0 In mtk-aie, there is a possible use after free due to a logic error. | 6.7 |
| 2023-01-03 | CVE-2022-32652 | Improper Input Validation vulnerability in Google Android 11.0/12.0/13.0 In mtk-aie, there is a possible use after free due to a logic error. | 6.7 |
| 2023-01-03 | CVE-2022-32653 | Improper Input Validation vulnerability in Google Android 12.0/13.0 In mtk-aie, there is a possible use after free due to a logic error. | 6.7 |
| 2022-12-16 | CVE-2022-20199 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android 13.0 In multiple locations of NfcService.java, there is a possible disclosure of NFC tags due to a confused deputy. | 5.5 |
| 2022-12-16 | CVE-2022-20504 | Missing Authorization vulnerability in Google Android 13.0 In multiple locations of DreamManagerService.java, there is a missing permission check. | 6.7 |
| 2022-12-16 | CVE-2022-20505 | Path Traversal vulnerability in Google Android 13.0 In openFile of CallLogProvider.java, there is a possible permission bypass due to a path traversal error. | 6.7 |