Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-14 | CVE-2023-21285 | Unspecified vulnerability in Google Android In setMetadata of MediaSessionRecord.java, there is a possible way to view another user's images due to a confused deputy. | 5.5 |
| 2023-08-14 | CVE-2023-21286 | Unspecified vulnerability in Google Android In visitUris of RemoteViews.java, there is a possible way to reveal images across users due to a missing permission check. | 7.8 |
| 2023-08-14 | CVE-2023-21287 | Type Confusion vulnerability in Google Android In multiple locations, there is a possible code execution due to type confusion. | 9.8 |
| 2023-08-14 | CVE-2023-21288 | Missing Authorization vulnerability in Google Android In visitUris of Notification.java, there is a possible way to reveal images across users due to a missing permission check. | 5.5 |
| 2023-08-14 | CVE-2023-21289 | Unspecified vulnerability in Google Android In multiple locations, there is a possible bypass of a multi user security boundary due to a confused deputy. | 5.5 |
| 2023-08-14 | CVE-2023-21290 | Race Condition vulnerability in Google Android In update of MmsProvider.java, there is a possible way to bypass file permission checks due to a race condition. | 5.5 |
| 2023-08-14 | CVE-2023-21292 | Unspecified vulnerability in Google Android In openContentUri of ActivityManagerService.java, there is a possible way for a third party app to obtain restricted files due to a confused deputy. | 5.5 |
| 2023-08-14 | CVE-2023-35689 | Insecure Default Initialization of Resource vulnerability in Google Android 11.0/13.0 In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a possible way to access adb before SUW completion due to an insecure default value. | 7.8 |
| 2023-08-14 | CVE-2023-20965 | Insufficiently Protected Credentials vulnerability in Google Android 13.0 In processMessageImpl of ClientModeImpl.java, there is a possible credential disclosure in the TOFU flow due to a logic error in the code. | 9.8 |
| 2023-08-14 | CVE-2023-21132 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In onCreate of ManagePermissionsActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. | 6.8 |