Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
google android 10.0 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-39738
In CarSetings, there is a possible to pair BT device bypassing user's consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
5.5
CVSSv3
CVE-2021-39700
In the policies of adbd.te, there was a logic error which caused the CTS Listening Ports Test to report invalid results. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Google Android 10.0
Google Android 11.0
Google Android 12.0
1 Github repository available
7
CVSSv3
CVE-2022-20007
In startActivityForAttachedApplicationIfNeeded of RootWindowContainer.java, there is a possible way to overlay an app that believes it's still in the foreground, when it is not, due to a race condition. This could lead to local escalation of privilege with no additional...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
1 Github repository available
5.5
CVSSv3
CVE-2022-20112
In getAvailabilityStatus of PrivateDnsPreferenceController.java, there is a possible way for a guest user to change private DNS settings due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.8
CVSSv3
CVE-2022-20005
In validateApkInstallLocked of PackageInstallerSession.java, there is a way to force a mismatch between running code and a parsed APK . This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
1 Github repository available
7
CVSSv3
CVE-2022-20006
In several functions of KeyguardServiceWrapper.java and related files,, there is a possible way to briefly view what's under the lockscreen due to a race condition. This could lead to local escalation of privilege if a Guest user is enabled, with no additional execution...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.8
CVSSv3
CVE-2022-20004
In checkSlicePermission of SliceManagerService.java, it is possible to access any slice URI due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
1 Github repository available
7.8
CVSSv3
CVE-2022-20114
In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
5.5
CVSSv3
CVE-2022-20011
In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
6.7
CVSSv3
CVE-2022-20108
In voice service, there is a possible out of bounds write due to a stack-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03330702; Issue ID: DTV03330702....
Google Android 9.0
Google Android 10.0
Google Android 11.0
Linux Linux Kernel 4.9
Linux Linux Kernel 4.19
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-29337
CVE-2021-32965
firmware
CVE-2022-1388
inject
authentication bypass
CVE-2022-22972
CVE-2022-29333
CVE-2021-45914
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »
Vulmon