Vulnerabilities > Google > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-02-16 CVE-2024-0030 Out-of-bounds Read vulnerability in Google Android
In btif_to_bta_response of btif_gatt_util.cc, there is a possible out of bounds read due to an incorrect bounds check.
local
low complexity
google CWE-125
5.5
2024-02-16 CVE-2024-0032 Unspecified vulnerability in Google Android
In queryChildDocuments of FileSystemProvider.java, there is a possible way to request access to directories that should be hidden due to improper input validation.
local
low complexity
google
6.5
2024-02-15 CVE-2023-40105 Missing Authorization vulnerability in Google Android
In backupAgentCreated of ActivityManagerService.java, there is a possible way to leak sensitive data due to a missing permission check.
local
low complexity
google CWE-862
5.5
2024-02-15 CVE-2023-40112 Out-of-bounds Read vulnerability in Google Android 11.0
In ippSetValueTag of ipp.c, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
2024-02-15 CVE-2023-40113 Missing Authorization vulnerability in Google Android
In multiple locations, there is a possible way for apps to access cross-user message data due to a missing permission check.
local
low complexity
google CWE-862
5.5
2024-02-15 CVE-2023-40124 Out-of-bounds Read vulnerability in Google Android
In multiple locations, there is a possible cross-user read due to a confused deputy.
local
low complexity
google CWE-125
5.5
2024-02-05 CVE-2024-20001 Out-of-bounds Write vulnerability in Google Android
In TVAPI, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
6.7
2024-02-05 CVE-2024-20002 Out-of-bounds Write vulnerability in Google Android
In TVAPI, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
6.7
2024-02-05 CVE-2024-20006 Out-of-bounds Write vulnerability in multiple products
In da, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
rdkcentral google openwrt CWE-787
6.7
2024-02-05 CVE-2024-20010 Type Confusion vulnerability in Google Android 11.0/12.0/13.0
In keyInstall, there is a possible escalation of privilege due to type confusion.
local
low complexity
google CWE-843
6.7