Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-15 | CVE-2021-0992 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 12.0 In onCreate of PaymentDefaultDialog.java, there is a possible way to change a default payment app without user consent due to tapjack overlay. | 3.3 |
| 2021-12-15 | CVE-2021-0994 | Missing Authorization vulnerability in Google Android 12.0 In requestRouteToHostAddress of ConnectivityService.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 3.3 |
| 2021-12-15 | CVE-2021-0995 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In registerSuggestionConnectionStatusListener of WifiServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-1015 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getMeidForSlot of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-1018 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In adjustStreamVolume of AudioService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-1031 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In cancelNotificationsFromListener of NotificationManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-1032 | Information Exposure Through Discrepancy vulnerability in Google Android 12.0 In getMimeGroup of PackageManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 3.3 |
| 2021-12-15 | CVE-2021-1034 | Missing Authorization vulnerability in Google Android 12.0 In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is apossible way to determine whether an app is installed, without querypermissions due to a missing permission check. | 3.3 |
| 2021-12-14 | CVE-2021-42068 | Improper Input Validation vulnerability in SAP 3D Visual Enterprise Viewer 9 When a user opens a manipulated GIF (.gif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application. | 3.3 |
| 2021-12-14 | CVE-2021-42069 | Out-of-bounds Write vulnerability in SAP 3D Visual Enterprise Viewer 9 When a user opens manipulated Tagged Image File Format (.tif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application | 3.3 |