Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 11.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2021-39738
In CarSetings, there is a possible to pair BT device bypassing user's consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidV...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20004
In checkSlicePermission of SliceManagerService.java, it is possible to access any slice URI due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: ...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20005
In validateApkInstallLocked of PackageInstallerSession.java, there is a way to force a mismatch between running code and a parsed APK . This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product:...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20114
In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-28781
Improper input validation in Settings prior to SMR-May-2022 Release 1 allows malicious users to launch arbitrary activity with system privilege. The patch adds proper validation logic to check the caller.
Google Android 11.0
Google Android 12.0
7.2
CVSSv2
CVE-2021-39807
In handleNfcStateChanged of SecureNfcEnabler.java, there is a possible way to enable NFC from the Guest account due to a missing permission check. This could lead to local escalation of privilege from the Guest account with no additional execution privileges needed. User interact...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2021-39808
In createNotificationChannelGroup of PreferencesHelper.java, there is a possible way for a service to run in foreground without user notification due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. Use...
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.2
CVSSv2
CVE-2021-0694
In setServiceForegroundInnerLocked of ActiveServices.java, there is a possible way for a background application to regain foreground permissions due to insufficient background restrictions. This could lead to local escalation of privilege with no additional execution privileges n...
Google Android 11.0
7.2
CVSSv2
CVE-2022-26092
Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows arbitrary code execution.
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.2
CVSSv2
CVE-2022-27826
Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows malicious users to launch certain activities.
Google Android 10.0
Google Android 11.0
Google Android 12.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »