Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-1046 | Out-of-bounds Read vulnerability in Google Android In lwis_dpm_update_clock of lwis_device_dpm.c, there is a possible out of bounds read due to an incorrect bounds check. | 4.4 |
| 2021-12-15 | CVE-2021-1047 | Integer Overflow or Wraparound vulnerability in Google Android In valid_ipc_dram_addr of cm_access_control.c, there is a possible out of bounds read due to an integer overflow. | 4.4 |
| 2021-12-15 | CVE-2021-39636 | Improper Initialization vulnerability in Google Android In do_ipt_get_ctl and do_ipt_set_ctl of ip_tables.c, there is a possible way to leak kernel information due to uninitialized data. | 4.4 |
| 2021-12-15 | CVE-2021-39637 | Out-of-bounds Read vulnerability in Google Android In CreateDeviceInfo of trusty_remote_provisioning_context.cpp, there is a possible out of bounds read due to a missing bounds check. | 4.4 |
| 2021-12-15 | CVE-2021-39638 | Use After Free vulnerability in Google Android In periodic_io_work_func of lwis_periodic_io.c, there is a possible out of bounds write due to a use after free. | 6.7 |
| 2021-12-15 | CVE-2021-39639 | Missing Authorization vulnerability in Google Android In TBD of fvp.c, there is a possible way to glitch CPU behavior due to a missing permission check. | 6.8 |
| 2021-12-15 | CVE-2021-39642 | Race Condition vulnerability in Google Android In synchronous_process_io_entries of lwis_ioctl.c, there is a possible out of bounds write due to a race condition. | 6.4 |
| 2021-12-15 | CVE-2021-39643 | Unchecked Return Value vulnerability in Google Android In ic_startRetrieveEntryValue of acropora/app/identity/ic.c, there is a possible bypass of defense-in-depth due to missing validation of the return value. | 6.7 |
| 2021-12-15 | CVE-2021-39647 | Improper Locking vulnerability in Google Android In mon_smc_load_sp of gs101-sc/plat/samsung/exynos/soc/exynos9845/smc_booting.S, there is a possible reinitialization of TEE due to improper locking. | 4.4 |
| 2021-12-15 | CVE-2021-39648 | Race Condition vulnerability in Google Android In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory due to a race condition. | 4.1 |