Vulnerabilities > Google > Low

DATE CVE VULNERABILITY TITLE RISK
2022-08-10 CVE-2022-20358 Missing Authorization vulnerability in Google Android
In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected content of content providers due to a missing permission check.
local
low complexity
google CWE-862
3.3
2022-08-05 CVE-2022-33729 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper restriction of broadcasting Intent in ConfirmConnectActivity of?NFC prior to SMR Aug-2022 Release 1 leaks MAC address of the connected Bluetooth device.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33728 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Exposure of sensitive information in Bluetooth prior to SMR Aug-2022 Release 1 allows local attackers to access connected BT macAddress via Settings.Gloabal.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33726 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Unprotected dynamic receiver in Samsung Galaxy Friends prior to SMR Aug-2022 Release 1 allows attacker to launch activity.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33725 Unspecified vulnerability in Google Android 10.0/11.0
A vulnerability using PendingIntent in Knox VPN prior to SMR Aug-2022 Release 1 allows attackers to access content providers with system privilege.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33724 Cleartext Transmission of Sensitive Information vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in Samsung Dialer application?prior to SMR Aug-2022 Release 1 allows local attackers to access ICCID via log.
local
low complexity
google CWE-319
3.3
2022-08-05 CVE-2022-33722 Unspecified vulnerability in Google Android 12.0
Implicit Intent hijacking vulnerability in Smart View prior to SMR Aug-2022 Release 1 allows attacker to access connected device MAC address.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33720 Improper Authentication vulnerability in Google Android 10.0/11.0
Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical attacker to access Chrome locked by AppLock via new tap shortcut.
low complexity
google CWE-287
2.4
2022-08-05 CVE-2022-33718 Unspecified vulnerability in Google Android 10.0/11.0/12.0
An improper access control vulnerability in Wi-Fi Service prior to SMR AUG-2022 Release 1 allows untrusted applications to manipulate the list of apps that can use mobile data.
local
low complexity
google
3.3
2022-08-05 CVE-2022-33714 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in SemWifiApBroadcastReceiver prior to SMR Aug-2022 Release 1 allows attacker to reset a setting value related to mobile hotspot.
local
low complexity
google
3.3