Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2020-09-17 CVE-2020-0401 Missing Authorization vulnerability in Google Android
In setInstallerPackageName of PackageManagerService.java, there is a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2020-09-17 CVE-2020-0394 Insecure Default Initialization of Resource vulnerability in Google Android
In onCreate of BluetoothPairingDialog.java, there is a possible tapjacking vector due to an insecure default value.
local
low complexity
google CWE-1188
7.8
7.8
2020-09-17 CVE-2020-0392 Double Free vulnerability in Google Android 10.0/9.0
In getLayerDebugInfo of SurfaceFlinger.cpp, there is a possible code execution due to a double free.
local
low complexity
google CWE-415
7.8
7.8
2020-09-17 CVE-2020-0391 Unspecified vulnerability in Google Android 10.0/9.0
In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast.
local
low complexity
google
7.8
7.8
2020-09-17 CVE-2020-0388 Incorrect Default Permissions vulnerability in Google Android 10.0/11.0
In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent.
local
low complexity
google CWE-276
7.8
7.8
2020-09-17 CVE-2020-0381 Integer Overflow or Wraparound vulnerability in Google Android
In Parse_wave of eas_mdls.c, there is a possible out of bounds write due to an integer overflow.
network
low complexity
google CWE-190
7.5
7.5
2020-09-17 CVE-2020-0245 Out-of-bounds Write vulnerability in Google Android
In DecodeFrameCombinedMode of combined_decode.cpp, there is a possible out of bounds write due to a heap buffer overflow.
network
low complexity
google CWE-787
8.8
8.8
2020-09-17 CVE-2020-0074 Improper Privilege Management vulnerability in Google Android
In verifyIntentFiltersIfNeeded of PackageManagerService.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains.
local
low complexity
google CWE-269
7.8
7.8
2020-09-11 CVE-2020-25281 Unspecified vulnerability in Google Android
An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 software.
network
low complexity
google
7.5
7.5
2020-08-31 CVE-2020-25065 Information Exposure Through Discrepancy vulnerability in Google Android
An issue was discovered on LG mobile devices with Android OS 4.4, 5.0, 5.1, 6.0, 7.0, 7.1, 8.0, 8.1, 9.0, and 10 software.
network
low complexity
google CWE-203
7.5
7.5