Vulnerabilities > Google > Low

DATE CVE VULNERABILITY TITLE RISK
2022-08-12 CVE-2022-20280 SQL Injection vulnerability in Google Android 13.0
In MMSProvider, there is a possible read of protected data due to improper input validationSQL injection.
local
low complexity
google CWE-89
3.3
2022-08-12 CVE-2022-20267 Missing Authorization vulnerability in Google Android 13.0
In bluetooth, there is a possible way to enable or disable bluetooth connection without user consent due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20262 Missing Authorization vulnerability in Google Android 13.0
In ActivityManager, there is a possible way to check another process's capabilities due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-12 CVE-2022-20261 Missing Authorization vulnerability in Google Android 13.0
In LocationManager, there is a possible way to get location information due to a missing permission check.
local
low complexity
google CWE-862
2.3
2022-08-12 CVE-2022-20257 Unspecified vulnerability in Google Android 13.0
In Bluetooth, there is a possible way to pair a display only device without PIN confirmation due to a logic error in the code.
local
low complexity
google
3.3
2022-08-11 CVE-2022-20252 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In PackageManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20251 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20249 Information Exposure Through Discrepancy vulnerability in Google Android 13.0.0
In LocaleManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure.
local
low complexity
google CWE-203
3.3
2022-08-11 CVE-2022-20245 Unspecified vulnerability in Google Android 13.0.0
In WindowManager, there is a possible method to create a recording of the lock screen due to an insecure default value.
low complexity
google
2.4
2022-08-11 CVE-2022-20241 Improper Input Validation vulnerability in Google Android 13.0.0
In Messaging, there is a possible way to attach a private file to an SMS message due to improper input validation.
local
low complexity
google CWE-20
3.3