Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-27 | CVE-2023-44121 | Unspecified vulnerability in Google Android The vulnerability is an intent redirection in LG ThinQ Service ("com.lge.lms2") in the "com/lge/lms/things/ui/notification/NotificationManager.java" file. | 6.3 |
| 2023-09-27 | CVE-2023-44126 | Unspecified vulnerability in Google Android The vulnerability is that the Call management ("com.android.server.telecom") app patched by LG sends a lot of LG-owned implicit broadcasts that disclose sensitive data to all third-party apps installed on the same device. | 5.5 |
| 2023-09-27 | CVE-2023-44127 | Unspecified vulnerability in Google Android he vulnerability is that the Call management ("com.android.server.telecom") app patched by LG launches implicit intents that disclose sensitive data to all third-party apps installed on the same device. | 5.5 |
| 2023-09-27 | CVE-2023-44216 | Information Exposure Through Discrepancy vulnerability in multiple products PVRIC (PowerVR Image Compression) on Imagination 2018 and later GPU devices offers software-transparent compression that enables cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification, aka a GPU.zip issue. | 5.3 |
| 2023-09-11 | CVE-2023-35664 | Out-of-bounds Read vulnerability in Google Android 12.0/12.1/13.0 In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2023-09-11 | CVE-2023-35671 | Unspecified vulnerability in Google Android In onHostEmulationData of HostEmulationManager.java, there is a possible way for a general purpose NFC reader to read the full card number and expiry details when the device is in locked screen mode due to a logic error in the code. | 5.5 |
| 2023-09-11 | CVE-2023-35675 | Unspecified vulnerability in Google Android In loadMediaResumptionControls of MediaResumeListener.kt, there is a possible way to play and listen to media files played by another user on the same device due to a logic error in the code. | 5.5 |
| 2023-09-11 | CVE-2023-35677 | Unspecified vulnerability in Google Android In onCreate of DeviceAdminAdd.java, there is a possible way to forcibly add a device admin due to a missing permission check. | 5.5 |
| 2023-09-11 | CVE-2023-35679 | Out-of-bounds Read vulnerability in Google Android In MtpPropertyValue of MtpProperty.h, there is a possible out of bounds read due to uninitialized data. | 5.5 |
| 2023-09-11 | CVE-2023-35680 | Unspecified vulnerability in Google Android In multiple locations, there is a possible way to import contacts belonging to other users due to a confused deputy. | 5.5 |