Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-08 | CVE-2020-0009 | Incorrect Default Permissions vulnerability in multiple products In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. | 5.5 |
| 2020-01-08 | CVE-2014-9908 | Unspecified vulnerability in Google Android 4.4/5.0.2/5.1.1 A Denial of Service vulnerability exists in Google Android 4.4.4, 5.0.2, and 5.1.1, which allows malicious users to block Bluetooh access (Android Bug ID A-28672558). low complexity google | 6.5 |
| 2020-01-07 | CVE-2019-9465 | Unspecified vulnerability in Google Android In the Titan M handling of cryptographic operations, there is a possible information disclosure due to an unusual root cause. | 5.5 |
| 2020-01-06 | CVE-2019-9472 | Information Exposure Through Discrepancy vulnerability in Google Android In DCRYPTO_equals of compare.c, there is a possible timing attack due to improperly used crypto. | 5.5 |
| 2020-01-06 | CVE-2019-9471 | Out-of-bounds Write vulnerability in Google Android In set_outbound_iatu of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2020-01-06 | CVE-2019-9470 | Out-of-bounds Write vulnerability in Google Android In dma_sblk_start of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2019-12-06 | CVE-2019-9464 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0 In various functions of RecentLocationApps.java, DevicePolicyManagerService.java, and RecognitionService.java, there is an incorrect warning indicating an app accessed the user's location. | 5.5 |
| 2019-12-06 | CVE-2019-2231 | Missing Encryption of Sensitive Data vulnerability in Google Android 10.0/9.0 In Blob::Blob of blob.cpp, there is a possible unencrypted master key due to improper input validation. | 4.4 |
| 2019-12-06 | CVE-2019-2229 | Missing Authorization vulnerability in Google Android In updateWidget of BaseWidgetProvider.java, there is a possible leak of user data due to a missing permission check. | 5.5 |
| 2019-12-06 | CVE-2019-2228 | Out-of-bounds Read vulnerability in Google Android In array_find of array.c, there is a possible out-of-bounds read due to an incorrect bounds check. | 5.5 |