Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-13 | CVE-2021-0400 | Improper Input Validation vulnerability in Google Android 10.0/11.0/9.0 In injectBestLocation and handleUpdateLocation of GnssLocationProvider.java, there is a possible incorrect reporting of location data to emergency services due to improper input validation. | 5.5 |
| 2021-04-09 | CVE-2021-25363 | Improper Privilege Management vulnerability in Google Android An improper access control in ActivityManagerService prior to SMR APR-2021 Release 1 allows untrusted applications to access running processesdelete some local files. | 6.1 |
| 2021-04-09 | CVE-2021-25362 | Improper Privilege Management vulnerability in Google Android 10.0/8.1/9.0 An improper permission management in CertInstaller prior to SMR APR-2021 Release 1 allows untrusted applications to delete certain local files. | 6.1 |
| 2021-04-09 | CVE-2021-25357 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 8.1/9.0 A pendingIntent hijacking vulnerability in Create Movie prior to SMR APR-2021 Release 1 in Android O(8.x) and P(9.0), 3.4.81.1 in Android Q(10,0), and 3.6.80.7 in Android R(11.0) allows unprivileged applications to access contact information. | 5.5 |
| 2021-04-06 | CVE-2021-30161 | Unspecified vulnerability in Google Android 11.0 An issue was discovered on LG mobile devices with Android OS 11 software. | 5.5 |
| 2021-03-26 | CVE-2021-25372 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0 An improper boundary check in DSP driver prior to SMR Mar-2021 Release 1 allows out of bounds memory access. | 6.7 |
| 2021-03-26 | CVE-2021-25371 | Unspecified vulnerability in Google Android 10.0/11.0 A vulnerability in DSP driver prior to SMR Mar-2021 Release 1 allows attackers load arbitrary ELF libraries inside DSP. | 6.7 |
| 2021-03-26 | CVE-2021-25370 | Use After Free vulnerability in Google Android An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic. | 4.4 |
| 2021-03-26 | CVE-2021-25369 | Unspecified vulnerability in Google Android An improper access control vulnerability in sec_log file prior to SMR MAR-2021 Release 1 exposes sensitive kernel information to userspace. | 5.5 |
| 2021-03-10 | CVE-2021-0463 | Use of Uninitialized Resource vulnerability in Google Android In convertToHidl of convert.cpp, there is a possible out of bounds read due to uninitialized data from ReturnFrameworkMessage. | 5.5 |