Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-13 | CVE-2023-21145 | Unspecified vulnerability in Google Android In updatePictureInPictureMode of ActivityRecord.java, there is a possible bypass of background launch restrictions due to a logic error in the code. | 7.8 |
| 2023-07-13 | CVE-2023-21241 | Integer Overflow or Wraparound vulnerability in Google Android In rw_i93_send_to_upper of rw_i93.cc, there is a possible out of bounds write due to an integer overflow. | 7.8 |
| 2023-07-13 | CVE-2023-21245 | Unspecified vulnerability in Google Android In showNextSecurityScreenOrFinish of KeyguardSecurityContainerController.java, there is a possible way to access the lock screen during device setup due to a logic error in the code. | 7.8 |
| 2023-07-13 | CVE-2023-21247 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In getAvailabilityStatus of BluetoothScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. | 7.8 |
| 2023-07-13 | CVE-2023-21248 | Missing Authorization vulnerability in Google Android 12.0/12.1/13.0 In getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. | 7.8 |
| 2023-07-13 | CVE-2023-21251 | Improper Input Validation vulnerability in Google Android In onCreate of ConfirmDialog.java, there is a possible way to connect to VNP bypassing user's consent due to improper input validation. | 7.3 |
| 2023-07-13 | CVE-2023-21254 | Unspecified vulnerability in Google Android 13.0 In getCurrentState of OneTimePermissionUserManager.java, there is a possible way to hold one-time permissions after the app is being killed due to a logic error in the code. | 7.8 |
| 2023-07-13 | CVE-2023-21255 | Use After Free vulnerability in multiple products In multiple functions of binder.c, there is a possible memory corruption due to a use after free. | 7.8 |
| 2023-07-13 | CVE-2023-21256 | Unspecified vulnerability in Google Android 13.0 In SettingsHomepageActivity.java, there is a possible way to launch arbitrary activities via Settings due to a logic error in the code. | 7.8 |
| 2023-07-13 | CVE-2023-21257 | Missing Authorization vulnerability in Google Android 13.0 In updateSettingsInternalLI of InstallPackageHelper.java, there is a possible way to sideload an app in the work profile due to a missing permission check. | 7.8 |