Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2021-06-22 CVE-2021-0571 Incorrect Authorization vulnerability in Google Android 11.0
In ActivityTaskManagerService.startActivity() and AppTaskImpl.startActivity() of ActivityTaskManagerService.java and AppTaskImpl.java, there is possible access to restricted activities due to a permissions bypass.
local
low complexity
google CWE-863
7.8
7.8
2021-06-21 CVE-2021-0478 Improper Handling of Exceptional Conditions vulnerability in Google Android
In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an uncaught exception.
local
low complexity
google CWE-755
7.8
7.8
2021-06-21 CVE-2021-0505 Missing Authorization vulnerability in Google Android 11.0
In the Settings app, there is a possible way to disable an always-on VPN due to a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2021-06-21 CVE-2021-0506 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android
In ActivityPicker.java, there is a possible bypass of user interaction in intent resolution due to a tapjacking/overlay attack.
local
low complexity
google CWE-1021
7.3
7.3
2021-06-21 CVE-2021-0507 Out-of-bounds Write vulnerability in Google Android
In handle_rc_metamsg_cmd of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check.
low complexity
google CWE-787
8.8
8.8
2021-06-21 CVE-2021-0508 Use After Free vulnerability in Google Android
In various functions of DrmPlugin.cpp, there is a possible use after free due to a race condition.
local
high complexity
google CWE-416
7.0
7.0
2021-06-21 CVE-2021-0509 Use After Free vulnerability in Google Android
In various functions of CryptoPlugin.cpp, there is a possible use after free due to a race condition.
local
high complexity
google CWE-416
7.0
7.0
2021-06-21 CVE-2021-0510 Integer Overflow or Wraparound vulnerability in Google Android
In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
7.8
2021-06-21 CVE-2021-0511 Unspecified vulnerability in Google Android 10.0/11.0/9.0
In Dex2oat of dex2oat.cc, there is a possible way to inject bytecode into an app due to improper input validation.
local
low complexity
google
7.8
7.8
2021-06-21 CVE-2021-0512 Out-of-bounds Write vulnerability in Google Android
In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow.
local
low complexity
google CWE-787
7.8
7.8