Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-16 | CVE-2022-42543 | Out-of-bounds Read vulnerability in Google Android In fdt_path_offset_namelen of fdt_ro.c, there is a possible out of bounds read due to an incorrect bounds check. | 4.4 |
| 2022-12-13 | CVE-2021-0934 | Improper Validation of Specified Quantity in Input vulnerability in Google Android In findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource exhaustion. | 5.5 |
| 2022-12-13 | CVE-2022-20449 | Path Traversal vulnerability in Google Android In writeApplicationRestrictionsLAr of UserManagerService.java, there is a possible overwrite of system files due to a path traversal error. | 4.4 |
| 2022-12-13 | CVE-2022-20466 | Insecure Default Initialization of Resource vulnerability in Google Android In applyKeyguardFlags of NotificationShadeWindowControllerImpl.java, there is a possible way to observe the user's password on a secondary display due to an insecure default value. | 5.5 |
| 2022-12-13 | CVE-2022-20468 | Out-of-bounds Read vulnerability in Google Android In BNEP_ConnectResp of bnep_api.cc, there is a possible out of bounds read due to an incorrect bounds check. | 6.5 |
| 2022-12-13 | CVE-2022-20471 | Out-of-bounds Read vulnerability in Google Android In SendIncDecRestoreCmdPart2 of NxpMfcReader.cc, there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2022-12-13 | CVE-2022-20476 | Infinite Loop vulnerability in Google Android In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an infinite reboot loop due to resource exhaustion. | 5.5 |
| 2022-12-13 | CVE-2022-20482 | Resource Exhaustion vulnerability in Google Android 12.0/12.1/13.0 In createNotificationChannel of NotificationManager.java, there is a possible way to make the device unusable and require factory reset due to resource exhaustion. | 5.5 |
| 2022-12-13 | CVE-2022-20496 | Use After Free vulnerability in Google Android 12.0/12.1/13.0 In setDataSource of initMediaExtractor.cpp, there is a possibility of arbitrary code execution due to a use after free. | 5.5 |
| 2022-12-13 | CVE-2022-20497 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In updatePublicMode of NotificationLockscreenUserManagerImpl.java, there is a possible way to reveal sensitive notifications on the lockscreen due to an incorrect state transition. low complexity google | 4.6 |