Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-25415 | Improper Input Validation vulnerability in Google Android 10.0/11.0 Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to remap EL2 memory as writable. | 5.5 |
| 2021-06-11 | CVE-2021-25416 | Improper Input Validation vulnerability in Google Android 10.0/11.0 Assuming EL1 is compromised, an improper address validation in RKP prior to SMR JUN-2021 Release 1 allows local attackers to create executable kernel page outside code area. | 6.5 |
| 2021-04-23 | CVE-2021-25382 | Unspecified vulnerability in Google Android An improper authorization of using debugging command in Secure Folder prior to SMR Oct-2020 Release 1 allows unauthorized access to contents in Secure Folder via debugging command. low complexity google | 5.5 |
| 2021-04-15 | CVE-2021-0488 | Out-of-bounds Write vulnerability in Google Android In pb_write of pb_encode.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2021-04-13 | CVE-2021-0471 | Integer Overflow or Wraparound vulnerability in Google Android In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to an integer overflow. | 5.5 |
| 2021-04-13 | CVE-2021-0468 | Insecure Default Initialization of Resource vulnerability in Google Android In LK, there is a possible escalation of privilege due to an insecure default value. | 6.6 |
| 2021-04-13 | CVE-2021-0444 | Unspecified vulnerability in Google Android In onActivityResult of QuickContactActivity.java, there is an unnecessary return of an intent. | 5.5 |
| 2021-04-13 | CVE-2021-0443 | Race Condition vulnerability in Google Android In several functions of ScreenshotHelper.java and related files, there is a possible incorrectly saved screenshot due to a race condition. | 4.7 |
| 2021-04-13 | CVE-2021-0436 | Integer Overflow or Wraparound vulnerability in Google Android In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds read due to integer overflow. | 5.5 |
| 2021-04-13 | CVE-2021-0428 | Missing Authorization vulnerability in Google Android 10.0 In getSimSerialNumber of TelephonyManager.java, there is a possible way to read a trackable identifier due to a missing permission check. | 5.5 |