Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-06 | CVE-2021-0680 | Missing Authorization vulnerability in Google Android In system properties, there is a possible information disclosure due to a missing permission check. | 5.5 |
| 2021-10-06 | CVE-2021-0681 | Missing Authorization vulnerability in Google Android In system properties, there is a possible information disclosure due to a missing permission check. | 5.5 |
| 2021-10-06 | CVE-2021-0682 | Missing Authorization vulnerability in Google Android In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of notification data due to a missing permission check. | 5.5 |
| 2021-10-06 | CVE-2021-0686 | Missing Authorization vulnerability in Google Android 10.0/11.0 In getDefaultSmsPackage of RoleManagerService.java, there is a possible way to get information about the default sms app of a different device user due to a missing permission check. | 5.5 |
| 2021-10-06 | CVE-2021-0687 | Excessive Iteration vulnerability in Google Android In ellipsize of Layout.java, there is a possible ANR due to improper input validation. | 5.0 |
| 2021-10-06 | CVE-2021-0689 | Out-of-bounds Read vulnerability in Google Android In RGB_to_BGR1_portable of SkSwizzler_opts.h, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2021-10-06 | CVE-2021-0690 | Out-of-bounds Write vulnerability in Google Android In ih264d_mark_err_slice_skip of ih264d_parse_pslice.c, there is a possible out of bounds write due to a heap buffer overflow. | 6.5 |
| 2021-10-06 | CVE-2021-0691 | Improper Privilege Management vulnerability in Google Android 11.0 In the SELinux policy configured in system_app.te, there is a possible way for system_app to gain code execution in other processes due to an overly-permissive SELinux policy. | 6.7 |
| 2021-10-06 | CVE-2021-0693 | Unspecified vulnerability in Google Android 11.0 In openFile of HeapDumpProvider.java, there is a possible way to retrieve generated heap dumps from debuggable apps due to an unprotected provider. | 5.5 |
| 2021-10-06 | CVE-2021-0695 | Use After Free vulnerability in Google Android In get_sock_stat of xt_qtaguid.c, there is a possible out of bounds read due to a use after free. | 5.5 |