Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-10 | CVE-2020-0031 | Information Exposure vulnerability in Google Android 10.0 In triggerAugmentedAutofillLocked and related functions of Session.java, it is possible for Augmented Autofill to display sensitive information to the user inappropriately. | 5.0 |
| 2020-03-10 | CVE-2020-0012 | Out-of-bounds Write vulnerability in Google Android In fpc_ta_pn_get_unencrypted_image of fpc_ta_pn.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2020-03-10 | CVE-2020-0011 | Out-of-bounds Write vulnerability in Google Android In get_auth_result of fpc_ta_hw_auth.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2020-03-10 | CVE-2020-0010 | Out-of-bounds Write vulnerability in Google Android In fpc_ta_get_build_info of fpc_ta_kpi.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2020-02-20 | CVE-2014-7951 | Path Traversal vulnerability in Google Android 4.0.4 Directory traversal vulnerability in the Android debug bridge (aka adb) in Android 4.0.4 allows physically proximate attackers with a direct connection to the target Android device to write to arbitrary files owned by system via a .. | 4.6 |
| 2020-02-13 | CVE-2020-0028 | Unspecified vulnerability in Google Android 9.0 In notifyNetworkTested and related functions of NetworkMonitor.java, there is a possible bypass of private DNS settings. | 6.5 |
| 2020-02-13 | CVE-2020-0023 | Missing Authorization vulnerability in Google Android 10.0 In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user contacts over bluetooth due to a missing permission check. | 5.5 |
| 2020-02-13 | CVE-2020-0021 | NULL Pointer Dereference vulnerability in Google Android 10.0 In removeUnusedPackagesLPw of PackageManagerService.java, there is a possible permanent denial-of-service due to a missing package dependency test. | 6.5 |
| 2020-02-13 | CVE-2020-0020 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 10.0 In getAttributeRange of ExifInterface.java, there is a possible failure to redact location information from media files due to an incorrect bounds check. | 5.5 |
| 2020-02-13 | CVE-2020-0018 | Information Exposure Through Log Files vulnerability in Google Android In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. | 4.4 |