Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-10 | CVE-2021-0377 | Improper Input Validation vulnerability in Google Android 11.0 In DeltaPerformer::Write of delta_performer.cc, there is a possible use of untrusted input due to improper input validation. | 5.5 |
| 2021-03-10 | CVE-2021-0375 | Use of Insufficiently Random Values vulnerability in Google Android 11.0 In onPackageModified of VoiceInteractionManagerService.java, there is a possible change of default applications due to an insecure default value. | 5.5 |
| 2021-03-10 | CVE-2021-0374 | Out-of-bounds Read vulnerability in Google Android 11.0 In BnAudioPolicyService::onTransact of IAudioPolicyService.cpp, there is a possible out of bounds read due to a missing bounds check. | 4.4 |
| 2021-03-10 | CVE-2021-0371 | Out-of-bounds Read vulnerability in Google Android 11.0 In nci_proc_rf_management_ntf of nci_hrcv.cc, there is a possible out of bounds read due to a missing bounds check. | 6.7 |
| 2021-03-10 | CVE-2021-0370 | Out-of-bounds Write vulnerability in Google Android 11.0 In Write of NxpMfcReader.cc, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2021-03-10 | CVE-2021-0368 | Out-of-bounds Read vulnerability in Google Android 11.0 In oggpack_look of bitwise.c, there is a possible out of bounds read due to a missing bounds check. | 6.5 |
| 2021-03-04 | CVE-2021-25347 | Unspecified vulnerability in Google Android 10.0/11.0/9.0 Hijacking vulnerability in Samsung Email application version prior to SMR Feb-2021 Release 1 allows attackers to intercept when the provider is executed. | 5.3 |
| 2021-03-04 | CVE-2021-25345 | Unspecified vulnerability in Google Android 10.0/11.0 Graphic format mismatch while converting video format in hwcomposer prior to SMR Mar-2021 Release 1 results in kernel panic due to unsupported format. | 5.5 |
| 2021-03-04 | CVE-2021-25344 | Missing Authorization vulnerability in Google Android 10.0/11.0 Missing permission check in knox_custom service prior to SMR Mar-2021 Release 1 allows attackers to gain access to device's serial number without permission. | 5.5 |
| 2021-03-04 | CVE-2021-25339 | Improper Input Validation vulnerability in Google Android 10.0/11.0 Improper address validation in HArx in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows an attacker, given a compromised kernel, to corrupt EL2 memory. | 5.2 |