Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-06 | CVE-2019-2227 | Out-of-bounds Read vulnerability in Google Android 10.0/9.0 In DeepCopy of btif_av.cc, there is a possible out of bounds read due to improper casting. | 6.5 |
| 2019-12-06 | CVE-2019-2226 | Out-of-bounds Read vulnerability in Google Android In device_class_to_int of device_class.cc, there is a possible out of bounds read due to improper casting. | 5.5 |
| 2019-12-06 | CVE-2019-2220 | Unspecified vulnerability in Google Android 10.0/9.0 In checkOperation of AppOpsService.java, there is a possible bypass of user interaction requirements due to mishandling application suspend. | 5.5 |
| 2019-12-06 | CVE-2019-2219 | Race Condition vulnerability in Google Android 10.0/9.0 In several functions of NotificationManagerService.java and related files, there is a possible way to record audio from the background without notification to the user due to a permission bypass. | 4.7 |
| 2019-11-13 | CVE-2019-9467 | Command Injection vulnerability in Google Android In the Bootloader, there is a possible kernel command injection due to missing command sanitization. | 6.7 |
| 2019-11-13 | CVE-2019-2233 | Unspecified vulnerability in Google Android 10.0 In getUserCount and getCount of UserSwitcherController.java, there is possible new user creation due to a logic error. low complexity google | 6.8 |
| 2019-11-13 | CVE-2019-2212 | Out-of-bounds Read vulnerability in Google Android In poisson_distribution of random, there is an out of bounds read. | 5.5 |
| 2019-11-13 | CVE-2019-2209 | Out-of-bounds Read vulnerability in Google Android In BTA_DmPinReply of bta_dm_api.cc, there is a possible out of bounds read due to an incorrect bounds check. | 5.5 |
| 2019-11-13 | CVE-2019-2199 | Unspecified vulnerability in Google Android 10.0 In createSessionInternal of PackageInstallerService.java, there is a possible permissions bypass. | 6.7 |
| 2019-11-13 | CVE-2019-2198 | SQL Injection vulnerability in Google Android In Download Provider, there is a possible SQL injection vulnerability. | 5.5 |