Vulnerabilities > Google > Low

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2022-33690 Path Traversal vulnerability in Google Android 12.0
Improper input validation in Contacts Storage prior to SMR Jul-2022 Release 1 allows attacker to access arbitrary file.
local
low complexity
google CWE-22
3.3
2022-07-12 CVE-2022-33689 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in TelephonyUI prior to SMR Jul-2022 Release 1 allows attackers to change preferred network type by unprotected binder call.
local
low complexity
google
3.3
2022-07-12 CVE-2022-33688 Information Exposure Through Log Files vulnerability in Google Android 10.0/11.0/12.0
Sensitive information exposure vulnerability in EventType in SecTelephonyProvider prior to SMR Jul-2022 Release 1 allows local attackers with log access permission to get IMSI through device log.
local
low complexity
google CWE-532
3.3
2022-07-12 CVE-2022-33687 Information Exposure Through Log Files vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows local attackers to access IMSI via log.
local
low complexity
google CWE-532
3.3
2022-07-12 CVE-2022-33686 Files or Directories Accessible to External Parties vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in GsmAlarmManager prior to SMR Jul-2022 Release 1 allows local attacker to access iccid via log.
local
low complexity
google CWE-552
2.3
2022-07-12 CVE-2022-30757 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper authorization in isemtelephony prior to SMR Jul-2022 Release 1 allows attacker to obtain CID without ACCESS_FINE_LOCATION permission.
local
low complexity
google
3.3
2022-07-12 CVE-2022-30753 Incorrect Default Permissions vulnerability in Google Android 10.0/11.0/12.0
Improper use of a unique device ID in unprotected SecSoterService prior to SMR Jul-2022 Release 1 allows local attackers to get the device ID without permission.
local
low complexity
google CWE-276
3.3
2022-07-12 CVE-2022-30752 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected by using WIFI_AP_STA_STATE_CHANGED action.
local
low complexity
google
3.3
2022-07-12 CVE-2022-30751 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in sendDHCPACKBroadcast function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected by using WIFI_AP_STA_DHCPACK_EVENT action.
local
low complexity
google
3.3
2022-07-12 CVE-2022-30750 Unspecified vulnerability in Google Android 10.0/11.0/12.0
Improper access control vulnerability in updateLastConnectedClientInfo function of SemWifiApClient prior to SMR Jul-2022 Release 1 allows attacker to access wifi ap client mac address that connected.
local
low complexity
google
3.3