Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-24 | CVE-2023-20958 | Out-of-bounds Read vulnerability in Google Android 13.0 In read_paint of ttcolr.c, there is a possible out of bounds read due to a heap buffer overflow. | 7.1 |
| 2023-03-24 | CVE-2023-20959 | Missing Authorization vulnerability in Google Android 13.0 In AddSupervisedUserActivity, guest users are not prevented from starting the activity due to missing permissions checks. | 7.8 |
| 2023-03-24 | CVE-2023-20960 | Improper Input Validation vulnerability in Google Android 12.1/13.0 In launchDeepLinkIntentToRight of SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities due to improper input validation. | 8.8 |
| 2023-03-24 | CVE-2023-20963 | Improper Certificate Validation vulnerability in Google Android In WorkSource, there is a possible parcel mismatch. | 7.8 |
| 2023-03-24 | CVE-2023-20964 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a confused deputy. | 7.8 |
| 2023-03-24 | CVE-2023-20966 | Out-of-bounds Write vulnerability in Google Android In inflate of inflate.c, there is a possible out of bounds write due to a heap buffer overflow. | 7.8 |
| 2023-03-24 | CVE-2023-20971 | Unspecified vulnerability in Google Android 13.0 In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. | 7.8 |
| 2023-03-24 | CVE-2023-20975 | Unspecified vulnerability in Google Android 13.0 In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible way to bypass DISALLOW_CONTENT_CAPTURE due to a permissions bypass. | 7.8 |
| 2023-03-24 | CVE-2023-20976 | Improper Input Validation vulnerability in Google Android 13.0 In getConfirmationMessage of DefaultAutofillPicker.java, there is a possible way to mislead the user to select default autofill application due to improper input validation. | 7.3 |
| 2023-03-24 | CVE-2023-20985 | Out-of-bounds Write vulnerability in Google Android 13.0 In BTA_GATTS_HandleValueIndication of bta_gatts_api.cc, there is a possible out of bounds write due to improper input validation. | 7.8 |