Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2021-0582 | Out-of-bounds Read vulnerability in Google Android In wifi driver, there is a possible out of bounds read due to a missing bounds check. | 6.5 |
| 2021-08-17 | CVE-2021-0584 | Out-of-bounds Read vulnerability in Google Android In verifyBufferObject of Parcel.cpp, there is a possible out of bounds read due to an improper input validation. | 5.5 |
| 2021-08-17 | CVE-2021-0639 | Insecure Storage of Sensitive Information vulnerability in Google Android In multiple functions of libl3oemcrypto.cpp, there is a possible weakness in the existing obfuscation mechanism due to the way sensitive data is handled. | 5.5 |
| 2021-08-17 | CVE-2021-0641 | Missing Authorization vulnerability in Google Android In getAvailableSubscriptionInfoList of SubscriptionController.java, there is a possible disclosure of unique identifiers due to a missing permission check. | 5.5 |
| 2021-08-17 | CVE-2021-0642 | Missing Authorization vulnerability in Google Android In onResume of VoicemailSettingsFragment.java, there is a possible way to retrieve a trackable identifier without permissions due to a missing permission check. | 5.5 |
| 2021-08-05 | CVE-2021-25443 | Use After Free vulnerability in Google Android A use after free vulnerability in conn_gadget driver prior to SMR AUG-2021 Release 1 allows malicious action by an attacker. | 5.3 |
| 2021-08-05 | CVE-2021-25444 | Use of Insufficiently Random Values vulnerability in Google Android 10.0/8.1/9.0 An IV reuse vulnerability in keymaster prior to SMR AUG-2021 Release 1 allows decryption of custom keyblob with privileged process. | 5.5 |
| 2021-07-14 | CVE-2021-0518 | Missing Authorization vulnerability in Google Android 13.0 In Wi-Fi, there is a possible leak of location-sensitive data due to a missing permission check. | 5.5 |
| 2021-07-14 | CVE-2021-0585 | Out-of-bounds Write vulnerability in Google Android In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation. | 6.7 |
| 2021-07-14 | CVE-2021-0588 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 8.1/9.0 In processInboundMessage of MceStateMachine.java, there is a possible SMS disclosure due to a missing permission check. | 5.5 |