Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2022-33695 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0/11.0/12.0
Use of improper permission in InputManagerService prior to SMR Jul-2022 Release 1 allows unauthorized access to the service.
local
low complexity
google CWE-732
7.8
7.8
2022-07-12 CVE-2022-33703 Improper Input Validation vulnerability in Google Android 10.0/11.0/12.0
Improper validation vulnerability in CACertificateInfo prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities.
local
low complexity
google CWE-20
7.8
7.8
2022-07-12 CVE-2022-33704 Improper Input Validation vulnerability in Google Android 10.0/11.0/12.0
Improper validation vulnerability in ucmRetParcelable of KnoxSDK prior to SMR Jul-2022 Release 1 allows attackers to launch certain activities.
local
low complexity
google CWE-20
7.8
7.8
2022-07-06 CVE-2022-20082 Race Condition vulnerability in Google Android 10.0/11.0/12.0
In GPU, there is a possible use after free due to a race condition.
local
high complexity
google CWE-362
7.0
7.0
2022-07-06 CVE-2022-21767 Out-of-bounds Write vulnerability in Google Android
In Bluetooth, there is a possible out of bounds write due to a missing bounds check.
low complexity
google CWE-787
8.8
8.8
2022-07-06 CVE-2022-21768 Out-of-bounds Write vulnerability in Google Android
In Bluetooth, there is a possible out of bounds write due to a missing bounds check.
low complexity
google CWE-787
8.8
8.8
2022-07-06 CVE-2022-21777 Missing Authorization vulnerability in Google Android 11.0/12.0
In Autoboot, there is a possible permission bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2022-06-15 CVE-2022-20203 Out-of-bounds Write vulnerability in Google Android 12.1
In multiple locations of the nanopb library, there is a possible way to corrupt memory when decoding untrusted protobuf files.
local
low complexity
google CWE-787
7.8
7.8
2022-06-15 CVE-2021-39806 Double Free vulnerability in Google Android 12.1
In closef of label_backends_android.c, there is a possible way to corrupt memory due to a double free.
local
low complexity
google CWE-415
7.8
7.8
2022-06-15 CVE-2022-20138 Missing Authorization vulnerability in Google Android
In ACTION_MANAGED_PROFILE_PROVISIONED of DevicePolicyManagerService.java, there is a possible way for unprivileged app to send MANAGED_PROFILE_PROVISIONED intent due to a missing permission check.
local
low complexity
google CWE-862
7.8
7.8