Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2022-23999 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent. | 3.3 |
| 2022-02-04 | CVE-2022-0317 | Improper Input Validation vulnerability in Google Go-Attestation An improper input validation vulnerability in go-attestation before 0.3.3 allows local users to provide a maliciously-formed Quote over no/some PCRs, causing AKPublic.Verify to succeed despite the inconsistency. | 3.3 |
| 2022-01-14 | CVE-2021-39628 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0 In StatusBar.java, there is a possible disclosure of notification content on the lockscreen due to a logic error in the code. | 3.3 |
| 2022-01-10 | CVE-2022-22272 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 Improper authorization in TelephonyManager prior to SMR Jan-2022 Release 1 allows attackers to get IMSI without READ_PRIVILEGED_PHONE_STATE permission | 3.3 |
| 2022-01-10 | CVE-2022-22270 | Files or Directories Accessible to External Parties vulnerability in Google Android 10.0/11.0/9.0 An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information. | 3.3 |
| 2022-01-10 | CVE-2022-22269 | Files or Directories Accessible to External Parties vulnerability in Google Android 10.0/11.0/9.0 Keeping sensitive data in unprotected BluetoothSettingsProvider prior to SMR Jan-2022 Release 1 allows untrusted applications to get a local Bluetooth MAC address. | 3.3 |
| 2022-01-10 | CVE-2022-22267 | Files or Directories Accessible to External Parties vulnerability in Google Android Implicit Intent hijacking vulnerability in ActivityMetricsLogger prior to SMR Jan-2022 Release 1 allows attackers to get running application information. | 3.3 |
| 2022-01-10 | CVE-2022-22266 | Improper Privilege Management vulnerability in Google Android 10.0/11.0/9.0 (Applicable to China models only) Unprotected WifiEvaluationService in TencentWifiSecurity application prior to SMR Jan-2022 Release 1 allows untrusted applications to get WiFi information without proper permission. | 3.3 |
| 2021-12-15 | CVE-2021-1034 | Missing Authorization vulnerability in Google Android 12.0 In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is apossible way to determine whether an app is installed, without querypermissions due to a missing permission check. | 3.3 |
| 2021-12-15 | CVE-2021-1032 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getMimeGroup of PackageManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |