Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-1008 | Unspecified vulnerability in Google Android 12.0 In addSubInfo of SubscriptionController.java, there is a possible way to force the user to make a factory reset due to a logic error in the code. | 4.4 |
| 2021-12-15 | CVE-2021-1009 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In setApplicationCategoryHint of PackageManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1010 | Missing Authorization vulnerability in Google Android 12.0 In getSigningKeySet of PackageManagerService.java, there is a missing permission check. | 5.5 |
| 2021-12-15 | CVE-2021-1011 | Missing Authorization vulnerability in Google Android 12.0 In setPackageStoppedState of PackageManagerService.java, there is a missing permission check. | 5.5 |
| 2021-12-15 | CVE-2021-1012 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In onResume of NotificationAccessDetails.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1013 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In checkExistsAndEnforceCannotModifyImmutablyRestrictedPermission of PermissionManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1014 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getNetworkTypeForSubscriber of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2021-12-15 | CVE-2021-1023 | Information Exposure vulnerability in Google Android 12.0 In onCreate of RequestIgnoreBatteryOptimizations.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.0 |
| 2021-12-15 | CVE-2021-1024 | Unspecified vulnerability in Google Android 12.0 In onEventReceived of EventResultPersister.java, there is a possible intent redirection due to a confused deputy. | 6.7 |
| 2021-12-15 | CVE-2021-1025 | Missing Authorization vulnerability in Google Android 12.0 In hasNamedWallpaper of WallpaperManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 5.5 |