Vulnerabilities > Google > Android > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-09-27 CVE-2021-0421 Classic Buffer Overflow vulnerability in Google Android 10.0/11.0
In memory management driver, there is a possible information disclosure due to a missing bounds check.
local
low complexity
google CWE-120
5.5
2021-09-27 CVE-2021-0422 Allocation of Resources Without Limits or Throttling vulnerability in Google Android 10.0/11.0
In memory management driver, there is a possible system crash due to a missing bounds check.
local
low complexity
google CWE-770
5.5
2021-09-27 CVE-2021-0423 Improper Initialization vulnerability in Google Android 10.0/11.0
In memory management driver, there is a possible information disclosure due to uninitialized data.
local
low complexity
google CWE-665
5.5
2021-09-27 CVE-2021-0424 Allocation of Resources Without Limits or Throttling vulnerability in Google Android 10.0/11.0
In memory management driver, there is a possible system crash due to a missing bounds check.
local
low complexity
google CWE-770
5.5
2021-09-27 CVE-2021-0425 Unspecified vulnerability in Google Android 10.0/11.0
In memory management driver, there is a possible side channel information disclosure.
local
low complexity
google
5.5
2021-09-27 CVE-2021-0660 Out-of-bounds Read vulnerability in Google Android 10.0/11.0
In ccu, there is a possible out of bounds read due to incorrect error handling.
network
low complexity
google CWE-125
4.9
2021-09-09 CVE-2021-25450 Path Traversal vulnerability in Google Android
Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Sep-2021 Release 1 allows attackers to write file as system uid via remote socket.
low complexity
google CWE-22
6.5
2021-09-09 CVE-2021-25452 Improper Input Validation vulnerability in Google Android 10.0/11.0
An improper input validation vulnerability in loading graph file in DSP driver prior to SMR Sep-2021 Release 1 allows attackers to perform permanent denial of service on the device.
local
low complexity
google CWE-20
5.5
2021-09-09 CVE-2021-25453 Unspecified vulnerability in Google Android
Some improper access control in Bluetooth APIs prior to SMR Sep-2021 Release 1 allows untrusted application to get Bluetooth information.
local
low complexity
google
5.5
2021-09-09 CVE-2021-25454 Out-of-bounds Read vulnerability in Google Android
OOB read vulnerability in libsaacextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute remote DoS via forged aac file.
local
low complexity
google CWE-125
5.5