Vulnerabilities > Google > Low

DATE CVE VULNERABILITY TITLE RISK
2021-11-05 CVE-2021-25501 Unspecified vulnerability in Google Android 10.0/11.0
An improper access control vulnerability in SCloudBnRReceiver in SecTelephonyProvider prior to SMR Nov-2021 Release 1 allows untrusted application to call some protected providers.
local
low complexity
google
3.3
2021-10-08 CVE-2021-37964 Inappropriate implementation in ChromeOS Networking in Google Chrome on ChromeOS prior to 94.0.4606.54 allowed an attacker with a rogue wireless access point to to potentially carryout a wifi impersonation attack via a crafted ONC file.
local
low complexity
google fedoraproject debian
3.3
2021-10-06 CVE-2021-25486 Unspecified vulnerability in Google Android
Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in log.
local
low complexity
google
3.3
2021-10-06 CVE-2021-25484 Improper Authentication vulnerability in Google Android 10.0/11.0/8.1
Improper authentication in InputManagerService prior to SMR Oct-2021 Release 1 allows monitoring the touch event.
local
low complexity
google CWE-287
3.3
2021-10-06 CVE-2021-25472 Unspecified vulnerability in Google Android
An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021 Release 1 allows untrusted application to overwrite some Bluetooth information.
local
low complexity
google
3.3
2021-09-09 CVE-2021-25457 Improper Input Validation vulnerability in Google Android 10.0/11.0
An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memory information.
local
low complexity
google CWE-20
3.3
2021-09-09 CVE-2021-25455 Out-of-bounds Read vulnerability in Google Android
OOB read vulnerability in libsaviextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to access arbitrary address through pointer via forged avi file.
local
low complexity
google CWE-125
3.3
2021-09-09 CVE-2021-25451 Improper Authentication vulnerability in Google Android 10.0/11.0/9.0
A PendingIntent hijacking in NetworkPolicyManagerService prior to SMR Sep-2021 Release 1 allows attackers to get IMSI data.
local
low complexity
google CWE-287
3.3
2021-08-12 CVE-2021-38591 Unspecified vulnerability in Google Android 10.0/9.0
An issue was discovered on LG mobile devices with Android OS P and Q software for mt6762/mt6765/mt6883.
local
low complexity
google
3.3
2021-06-11 CVE-2021-25409 Missing Authorization vulnerability in Google Android 10.0
Improper access in Notification setting prior to SMR JUN-2021 Release 1 allows physically proximate attackers to set arbitrary notification via physically configuring device.
low complexity
google CWE-862
2.4