Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-16 | CVE-2022-20513 | Out-of-bounds Read vulnerability in Google Android 13.0 In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2022-12-16 | CVE-2022-20514 | Use After Free vulnerability in Google Android 13.0 In acquireFabricatedOverlayIterator, nextFabricatedOverlayInfos, and releaseFabricatedOverlayIterator of Idmap2Service.cpp, there is a possible out of bounds write due to a use after free. | 6.7 |
| 2022-12-16 | CVE-2022-20515 | Unspecified vulnerability in Google Android 13.0 In onPreferenceClick of AccountTypePreferenceLoader.java, there is a possible way to retrieve protected files from the Settings app due to a confused deputy. | 5.5 |
| 2022-12-16 | CVE-2022-20517 | SQL Injection vulnerability in Google Android 13.0 In getMessagesByPhoneNumber of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. | 5.5 |
| 2022-12-16 | CVE-2022-20518 | SQL Injection vulnerability in Google Android 13.0 In query of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. | 5.5 |
| 2022-12-16 | CVE-2022-20521 | NULL Pointer Dereference vulnerability in Google Android 13.0 In sdpu_find_most_specific_service_uuid of sdp_utils.cc, there is a possible way to crash Bluetooth due to a missing null check. | 5.0 |
| 2022-12-16 | CVE-2022-20523 | Out-of-bounds Read vulnerability in Google Android 13.0 In IncFs_GetFilledRangesStartingFrom of incfs.cpp, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2022-12-16 | CVE-2022-20527 | Out-of-bounds Read vulnerability in Google Android 13.0 In HalCoreCallback of halcore.cc, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2022-12-16 | CVE-2022-20530 | Unspecified vulnerability in Google Android 13.0 In strings.xml, there is a possible permission bypass due to a misleading string. | 5.3 |
| 2022-12-16 | CVE-2022-20531 | Unspecified vulnerability in Google Android In Telecom, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |