Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-09 | CVE-2022-39879 | Unspecified vulnerability in Google Android 11.0/12.0 Improper authorization vulnerability in?CallBGProvider prior to SMR Nov-2022 Release 1 allows local attacker to grant permission for accessing information with phone uid. | 3.3 |
| 2022-11-08 | CVE-2022-20446 | Missing Authorization vulnerability in Google Android 10.0/11.0 In AlwaysOnHotwordDetector of AlwaysOnHotwordDetector.java, there is a possible way to access the microphone from the background due to a missing permission check. | 3.3 |
| 2022-10-07 | CVE-2022-39856 | Unspecified vulnerability in Google Android 12.0 Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information. | 3.3 |
| 2022-10-07 | CVE-2022-39851 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows local attacker to bind service that require BIND_REMOTEVIEWS permission. | 3.3 |
| 2022-10-07 | CVE-2022-39850 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 Improper access control in mum_container_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data. | 3.3 |
| 2022-10-07 | CVE-2022-39849 | Unspecified vulnerability in Google Android 10.0/11.0/12.0 Improper access control in knox_vpn_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data. | 3.3 |
| 2022-10-07 | CVE-2022-39848 | Information Exposure vulnerability in Google Android 10.0/11.0/12.0 Exposure of sensitive information in AT_Distributor prior to SMR Oct-2022 Release 1 allows local attacker to access SerialNo via log. | 3.3 |
| 2022-10-07 | CVE-2022-36868 | Unspecified vulnerability in Google Android 11.0/12.0 Improper restriction of broadcasting Intent in MouseNKeyHidDevice prior to SMR Oct-2022 Release 1 leaks MAC address of the connected Bluetooth device. | 3.3 |
| 2022-09-09 | CVE-2022-36857 | Improper Authorization vulnerability in Photo Editor prior to SMR Sep-2022 Release 1 allows physical attackers to read internal application data. | 2.4 |
| 2022-09-09 | CVE-2022-36856 | Missing Authorization vulnerability in Google Android 12.0 Improper access control vulnerability in Telecom application prior to SMR Sep-2022 Release 1 allows attacker to start emergency calls via undefined permission. | 3.3 |