Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-16 | CVE-2022-20535 | Information Exposure Through Discrepancy vulnerability in Google Android 13.0 In registerLocalOnlyHotspotSoftApCallback of WifiManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2022-12-16 | CVE-2022-20533 | Missing Authorization vulnerability in Google Android 13.0 In getSlice of WifiSlice.java, there is a possible way to connect a new WiFi network from the guest mode due to a missing permission check. | 3.3 |
| 2022-12-16 | CVE-2022-20529 | Missing Authorization vulnerability in Google Android 13.0 In multiple locations of WifiDialogActivity.java, there is a possible limited lockscreen bypass due to a logic error in the code. | 2.4 |
| 2022-12-16 | CVE-2022-20528 | Out-of-bounds Read vulnerability in Google Android 13.0 In findParam of HevcUtils.cpp there is a possible out of bounds read due to a missing bounds check. | 3.3 |
| 2022-12-16 | CVE-2022-20526 | Out-of-bounds Write vulnerability in Google Android 13.0 In CanvasContext::draw of CanvasContext.cpp, there is a possible out of bounds write due to a missing bounds check. | 3.3 |
| 2022-12-16 | CVE-2022-20525 | Information Exposure Through an Error Message vulnerability in Google Android 13.0 In enforceVisualVoicemailPackage of PhoneInterfaceManager.java, there is a possible leak of visual voicemail package name due to a permissions bypass. | 3.3 |
| 2022-12-16 | CVE-2022-20519 | Missing Authorization vulnerability in Google Android 13.0 In onCreate of AddAppNetworksActivity.java, there is a possible way for a guest user to configure WiFi networks due to a missing permission check. | 3.3 |
| 2022-12-13 | CVE-2022-20240 | Missing Authorization vulnerability in Google Android 12.0 In sOpAllowSystemRestrictionBypass of AppOpsManager.java, there is a possible leak of location information due to a missing permission check. | 2.3 |
| 2022-12-08 | CVE-2022-39914 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information. | 3.3 |
| 2022-12-08 | CVE-2022-39913 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information. | 3.3 |