Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-17 | CVE-2020-0429 | Use After Free vulnerability in Google Android In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. | 6.7 |
| 2020-09-17 | CVE-2020-0428 | Use After Free vulnerability in Google Android In CamX code, there is a possible use after free due to a race condition. | 6.4 |
| 2020-09-17 | CVE-2020-0427 | Use After Free vulnerability in multiple products In create_pinctrl of core.c, there is a possible out of bounds read due to a use after free. | 5.5 |
| 2020-09-17 | CVE-2020-0403 | Improper Privilege Management vulnerability in Google Android In the FPC TrustZone fingerprint App, there is a possible invalid command handler due to an exposed test feature. | 6.7 |
| 2020-09-17 | CVE-2020-0407 | Use of Insufficiently Random Values vulnerability in Google Android In various functions in fscrypt_ice.c and related files in some implementations of f2fs encryption that use encryption hardware which only supports 32-bit IVs (Initialization Vectors), 64-bit IVs are used and later are truncated to 32 bits. | 4.4 |
| 2020-09-17 | CVE-2020-0404 | Improper Privilege Management vulnerability in multiple products In uvc_scan_chain_forward of uvc_driver.c, there is a possible linked list corruption due to an unusual root cause. | 5.5 |
| 2020-09-17 | CVE-2020-0399 | Unspecified vulnerability in Google Android In showLimitedSimFunctionWarningNotification of NotificationMgr.java, there is a possible permission bypass due to an unsafe PendingIntent. | 5.5 |
| 2020-09-17 | CVE-2020-0397 | Unspecified vulnerability in Google Android In getNotificationBuilder of CarrierServiceStateTracker.java, there is a possible permission bypass due to an unsafe PendingIntent. | 5.5 |
| 2020-09-17 | CVE-2020-0396 | Unspecified vulnerability in Google Android In various places in Telephony, there is a possible permission bypass due to an unsafe PendingIntent. | 5.5 |
| 2020-09-17 | CVE-2020-0395 | Unspecified vulnerability in Google Android In showNotification of EmergencyCallbackModeService.java, there is a possible permission bypass due to an unsafe PendingIntent. | 5.5 |