Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-07 | CVE-2022-32592 | Out-of-bounds Write vulnerability in multiple products In cpu dvfs, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2022-10-07 | CVE-2022-32593 | Out-of-bounds Write vulnerability in Google Android 12.0 In vowe, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2022-10-07 | CVE-2022-39847 | Use After Free vulnerability in Google Android 10.0/11.0/12.0 Use after free vulnerability in set_nft_pid and signal_handler function of NFC driver prior to SMR Oct-2022 Release 1 allows attackers to perform malicious actions. | 5.3 |
| 2022-10-07 | CVE-2022-39855 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 Improper access control vulnerability in FACM application prior to SMR Oct-2022 Release 1 allows a local attacker to connect arbitrary AP and Bluetooth devices. low complexity google | 4.3 |
| 2022-09-14 | CVE-2022-20231 | Out-of-bounds Write vulnerability in Google Android In smc_intc_request_fiq of arm_gic.c, there is a possible out of bounds write due to improper input validation. | 6.7 |
| 2022-09-13 | CVE-2022-20393 | Integer Underflow (Wrap or Wraparound) vulnerability in Google Android 11.0/12.0/12.1 In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read due to an integer overflow. | 5.5 |
| 2022-09-13 | CVE-2022-20396 | Insufficient Verification of Data Authenticity vulnerability in Google Android 12.1/13.0 In SettingsActivity.java, there is a possible way to make a device discoverable over Bluetooth, without permission or user interaction, due to a permissions bypass. | 5.5 |
| 2022-09-13 | CVE-2022-20399 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android In the SEPolicy configuration of system apps, there is a possible access to the 'ip' utility due to an insecure default value. | 5.5 |
| 2022-09-09 | CVE-2022-36848 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 Improper Authorization vulnerability in setDualDARPolicyCmd prior to SMR Sep-2022 Release 1 allows local attackers to cause local permanent denial of service. | 5.5 |
| 2022-09-09 | CVE-2022-36850 | Path Traversal vulnerability in Google Android 12.0 Path traversal vulnerability in CallBGProvider prior to SMR Sep-2022 Release 1 allows attacker to overwrite arbitrary file with phone uid. | 4.7 |