Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2023-20916 Missing Authorization vulnerability in Google Android 12.0/12.1
In getMainActivityLaunchIntent of LauncherAppsService.java, there is a possible way to bypass the restrictions on starting activities from the background due to a missing permission check.
local
low complexity
google CWE-862
7.8
2023-01-26 CVE-2023-20919 Unspecified vulnerability in Google Android 13.0
In getStringsForPrefix of Settings.java, there is a possible prevention of package uninstallation due to a logic error in the code.
local
low complexity
google
7.8
2023-01-26 CVE-2023-20920 Use After Free vulnerability in Google Android
In queue of UsbRequest.java, there is a possible way to corrupt memory due to a use after free.
local
low complexity
google CWE-416
7.8
2023-01-26 CVE-2023-20921 Always-Incorrect Control Flow Implementation vulnerability in Google Android
In onPackageRemoved of AccessibilityManagerService.java, there is a possibility to automatically grant accessibility services due to a logic error in the code.
local
low complexity
google CWE-670
7.3
2023-01-26 CVE-2023-20925 Use After Free vulnerability in Google Android
In setUclampMinLocked of PowerSessionManager.cpp, there is a possible way to corrupt memory due to a use after free.
local
low complexity
google CWE-416
7.8
2023-01-26 CVE-2023-20928 Improper Locking vulnerability in Google Android
In binder_vma_close of binder.c, there is a possible use after free due to improper locking.
local
low complexity
google CWE-667
7.8
2023-01-26 CVE-2022-20456 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In AutomaticZenRule of AutomaticZenRule.java, there is a possible failure to persist permissions settings due to resource exhaustion.
local
low complexity
google CWE-770
7.8
2023-01-26 CVE-2022-20461 Type Confusion vulnerability in Google Android
In pinReplyNative of com_android_bluetooth_btservice_AdapterService.cpp, there is a possible out of bounds read due to type confusion.
local
low complexity
google CWE-843
7.8
2023-01-26 CVE-2022-20489 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In many functions of AutomaticZenRule.java, there is a possible failure to persist permissions settings due to resource exhaustion.
local
low complexity
google CWE-770
7.8
2023-01-26 CVE-2022-20490 Allocation of Resources Without Limits or Throttling vulnerability in Google Android
In multiple functions of AutomaticZenRule.java, there is a possible failure to persist permissions settings due to resource exhaustion.
local
low complexity
google CWE-770
7.8