Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-16 | CVE-2024-0029 | Unspecified vulnerability in Google Android 13.0 In multiple files, there is a possible way to capture the device screen when disallowed by device policy due to a logic error in the code. | 7.8 |
| 2024-02-16 | CVE-2024-0033 | Out-of-bounds Write vulnerability in Google Android In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer overflow. | 7.8 |
| 2024-02-16 | CVE-2024-0034 | Unspecified vulnerability in Google Android In BackgroundLaunchProcessController, there is a possible way to launch arbitrary activity from the background due to BAL Bypass. | 7.8 |
| 2024-02-16 | CVE-2024-0035 | NULL Pointer Dereference vulnerability in Google Android In onNullBinding of TileLifecycleManager.java, there is a possible way to launch an activity from the background due to a missing null check. | 7.8 |
| 2024-02-16 | CVE-2024-0036 | Unspecified vulnerability in Google Android In startNextMatchingActivity of ActivityTaskManagerService.java, there is a possible way to bypass the restrictions on starting activities from the background due to a logic error in the code. | 7.8 |
| 2024-02-16 | CVE-2024-0038 | Missing Authorization vulnerability in Google Android 14.0 In injectInputEventToInputFilter of AccessibilityManagerService.java, there is a possible arbitrary input event injection due to a missing permission check. | 7.8 |
| 2024-02-16 | CVE-2024-0040 | Out-of-bounds Write vulnerability in Google Android In setParameter of MtpPacket.cpp, there is a possible out of bounds read due to a heap buffer overflow. | 7.5 |
| 2024-02-16 | CVE-2024-0041 | Race Condition vulnerability in Google Android 14.0 In removePersistentDot of SystemStatusAnimationSchedulerImpl.kt, there is a possible race condition due to a logic error in the code. | 7.0 |
| 2024-02-15 | CVE-2023-40100 | Use After Free vulnerability in Google Android In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. | 7.8 |
| 2024-02-15 | CVE-2023-40104 | Improper Certificate Validation vulnerability in Google Android In ca-certificates, there is a possible way to read encrypted TLS data due to untrusted cryptographic certificates. | 7.5 |