Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2021-06-11 CVE-2021-0495 Use of Uninitialized Resource vulnerability in Google Android
In memory management driver, there is a possible out of bounds write due to uninitialized data.
local
low complexity
google CWE-908
7.8
7.8
2021-06-11 CVE-2021-0496 Use After Free vulnerability in Google Android
In memory management driver, there is a possible memory corruption due to a use after free.
local
low complexity
google CWE-416
7.8
7.8
2021-06-11 CVE-2021-0497 Use After Free vulnerability in Google Android
In memory management driver, there is a possible memory corruption due to a use after free.
local
low complexity
google CWE-416
7.8
7.8
2021-06-11 CVE-2021-0498 Double Free vulnerability in Google Android
In memory management driver, there is a possible memory corruption due to a double free.
local
low complexity
google CWE-415
7.8
7.8
2021-06-11 CVE-2021-25388 Improper Validation of Integrity Check Value vulnerability in Google Android 11.0
Improper caller check vulnerability in Knox Core prior to SMR MAY-2021 Release 1 allows attackers to install arbitrary app.
local
low complexity
google CWE-354
7.1
7.1
2021-06-11 CVE-2021-25407 Out-of-bounds Write vulnerability in Google Android 10.0/11.0/9.0
A possible out of bounds write vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write.
local
low complexity
google CWE-787
7.8
7.8
2021-06-11 CVE-2021-25408 Classic Buffer Overflow vulnerability in Google Android 10.0/11.0/9.0
A possible buffer overflow vulnerability in NPU driver prior to SMR JUN-2021 Release 1 allows arbitrary memory write and code execution.
local
low complexity
google CWE-120
7.8
7.8
2021-06-11 CVE-2021-25410 Incorrect Authorization vulnerability in Google Android 11.0
Improper access control of a component in CallBGProvider prior to SMR JUN-2021 Release 1 allows local attackers to access arbitrary files with an escalated privilege.
local
low complexity
google CWE-863
7.1
7.1
2021-06-11 CVE-2021-25412 Unspecified vulnerability in Google Android 10.0
An improper access control vulnerability in genericssoservice prior to SMR JUN-2021 Release 1 allows local attackers to execute protected activity with system privilege via untrusted applications.
local
low complexity
google
7.8
7.8
2021-06-11 CVE-2021-25414 Unspecified vulnerability in Google Android 10.0/11.0/9.0
Improper sanitization of incoming intent in Samsung Contacts prior to SMR JUN-2021 Release 1 allows local attackers to copy or overwrite arbitrary files with Samsung Contacts privilege.
local
low complexity
google
7.8
7.8