Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2022-04-11 CVE-2022-27570 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
network
low complexity
google CWE-787
critical
 10.0
10
2022-04-11 CVE-2022-27571 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
network
low complexity
google CWE-787
critical
 10.0
10
2022-04-11 CVE-2022-27572 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.
network
low complexity
google CWE-787
critical
 10.0
10
2022-04-11 CVE-2022-27573 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attackers.
network
low complexity
google CWE-787
6.5
6.5
2022-04-11 CVE-2022-27574 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/12.0
Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attacker.
network
low complexity
google CWE-787
7.5
7.5
2022-04-11 CVE-2022-27575 Incorrect Authorization vulnerability in Google Android 10.0/11.0/12.0
Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission.
local
low complexity
google CWE-863
3.3
3.3
2022-04-11 CVE-2022-27576 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission
network
google CWE-668
4.3
4.3
2022-04-11 CVE-2022-27821 Out-of-bounds Read vulnerability in Google Android 10.0/11.0/12.0
Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image file.
network
google CWE-125
4.3
4.3
2022-04-11 CVE-2022-27822 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.
local
low complexity
google CWE-668
2.1
2.1
2022-04-11 CVE-2022-27823 Out-of-bounds Read vulnerability in Google Android 10.0/11.0/12.0
Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.
network
google CWE-125
5.8
5.8