Vulnerabilities > Google > Android > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-06-11 CVE-2020-0212 Use After Free vulnerability in Google Android 10.0
In _onBufferDestroyed of InputBufferManager.cpp, there is a possible out of bounds read due to a use after free.
network
low complexity
google CWE-416
6.5
6.5
2020-06-11 CVE-2020-0211 Out-of-bounds Read vulnerability in Google Android 10.0
In SumCompoundHorizontalTaps of convolve_neon.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
6.5
6.5
2020-06-11 CVE-2020-0207 Out-of-bounds Read vulnerability in Google Android 10.0
In next_marker of jdmarker.c, there is a possible out of bounds read due to improper input validation.
network
low complexity
google CWE-125
6.5
6.5
2020-06-11 CVE-2020-0206 Improper Input Validation vulnerability in Google Android 10.0
In the settings app, there is a possible app crash due to improper input validation.
local
low complexity
google CWE-20
5.5
5.5
2020-06-11 CVE-2020-0205 Out-of-bounds Read vulnerability in Google Android 10.0
In the DaalaBitReader constructor of entropy_decoder.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
6.5
6.5
2020-06-11 CVE-2020-0200 Out-of-bounds Read vulnerability in Google Android 10.0
In ReadLittleEndian of raw_bit_reader.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
6.5
6.5
2020-06-11 CVE-2020-0199 Use After Free vulnerability in Google Android 10.0
In TimeCheck::TimeCheckThread::threadLoop of TimeCheck.cpp, there is a possible use-after-free due to a race condition.
local
high complexity
google CWE-416
4.1
4.1
2020-06-11 CVE-2020-0197 Out-of-bounds Read vulnerability in Google Android 10.0
In InitDataParser::parsePssh of InitDataParser.cpp, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
5.5
2020-06-11 CVE-2020-0196 Improper Input Validation vulnerability in Google Android 10.0
In RegisterNotificationResponse::GetEvent of register_notification_packet.cc, there is a possible abort due to improper input validation.
low complexity
google CWE-20
6.5
6.5
2020-06-11 CVE-2020-0195 Missing Initialization of Resource vulnerability in Google Android 10.0
In ihevcd_iquant_itrans_recon_ctb of ihevcd_iquant_itrans_recon_ctb.c and related functions, there is a possible information disclosure due to uninitialized data.
network
low complexity
google CWE-909
6.5
6.5