Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-0979 | Incorrect Default Permissions vulnerability in Google Android 12.0 In isRequestPinItemSupported of ShortcutService.java, there is a possible cross-user leak of packages in which the default launcher supports requests to create pinned shortcuts due to a permissions bypass. | 5.5 |
| 2021-12-15 | CVE-2021-0986 | Missing Authorization vulnerability in Google Android 12.0 In hasGrantedPolicy of DevicePolicyManagerService.java, there is a possible information disclosure about the device owner, profile owner, or device admin due to a logic error in the code. | 5.5 |
| 2021-12-15 | CVE-2021-0993 | Unspecified vulnerability in Google Android 12.0 In getOffsetBeforeAfter of TextLine.java, there is a possible denial of service due to resource exhaustion. | 6.5 |
| 2021-12-15 | CVE-2021-0996 | Out-of-bounds Read vulnerability in Google Android 12.0 In nfaHciCallback of HciEventManager.cpp, there is a possible out of bounds read due to a missing bounds check. | 4.5 |
| 2021-12-15 | CVE-2021-0997 | Information Exposure Through Log Files vulnerability in Google Android 12.0 In handleUpdateNetworkState of GnssNetworkConnectivityHandler.java , there is a possible APN disclosure due to log information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-0998 | Out-of-bounds Read vulnerability in Google Android 12.0 In 'ih264e_find_bskip_params()' of ih264e_me.c, there is a possible out of bounds read due to a heap buffer overflow. | 5.5 |
| 2021-12-15 | CVE-2021-1001 | Out-of-bounds Read vulnerability in Google Android 12.0 In PVInitVideoEncoder of mp4enc_api.cpp, there is a possible out of bounds read due to a heap buffer overflow. | 5.5 |
| 2021-12-15 | CVE-2021-1005 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getDeviceIdWithFeature of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1006 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0 In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. | 4.4 |
| 2021-12-15 | CVE-2021-1007 | Out-of-bounds Read vulnerability in Google Android 12.0 In btu_hcif_process_event of btu_hcif.cc, there is a possible out of bounds read due to an incorrect bounds check. | 4.4 |