Vulnerabilities > Google > Android > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-21260 | Origin Validation Error vulnerability in Google Android In notification access permission dialog box, malicious application can embedded a very long service label that overflow the original user prompt and possibly contains mis-leading information to be appeared as a system message for user confirmation. | 5.5 |
| 2023-07-13 | CVE-2021-0948 | Use of Uninitialized Resource vulnerability in Google Android The PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver can return uninitialized kernel memory to user space. | 5.5 |
| 2023-07-13 | CVE-2023-20942 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. | 5.5 |
| 2023-07-13 | CVE-2023-21238 | Unspecified vulnerability in Google Android In visitUris of RemoteViews.java, there is a possible leak of images between users due to a confused deputy. | 5.5 |
| 2023-07-13 | CVE-2023-21239 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In visitUris of Notification.java, there is a possible way to leak image data across user boundaries due to a confused deputy. | 5.5 |
| 2023-07-13 | CVE-2023-21240 | Resource Exhaustion vulnerability in Google Android In Policy of Policy.java, there is a possible boot loop due to resource exhaustion. | 5.5 |
| 2023-07-13 | CVE-2023-21243 | Classic Buffer Overflow vulnerability in Google Android In validateForCommonR1andR2 of PasspointConfiguration.java, there is a possible way to inflate the size of a config file with no limits due to a buffer overflow. | 5.5 |
| 2023-07-13 | CVE-2023-21249 | Improper Preservation of Permissions vulnerability in Google Android 13.0 In multiple functions of OneTimePermissionUserManager.java, there is a possible one-time permission retention due to a permissions bypass. | 5.5 |
| 2023-07-13 | CVE-2023-21400 | Improper Locking vulnerability in multiple products In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. | 6.7 |
| 2023-07-13 | CVE-2023-35693 | Use After Free vulnerability in Google Android In incfs_kill_sb of fs/incfs/vfs.c, there is a possible memory corruption due to a use after free. | 6.7 |