Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 12.1 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2022-20142
In createFromParcel of GeofenceHardwareRequestParcelable.java, there is a possible arbitrary code execution due to parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Pro...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20147
In nfa_dm_check_set_config of nfa_dm_main.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20138
In ACTION_MANAGED_PROFILE_PROVISIONED of DevicePolicyManagerService.java, there is a possible way for unprivileged app to send MANAGED_PROFILE_PROVISIONED intent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privi...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20124
In deletePackageX of DeletePackageHelper.java, there is a possible way for a Guest user to reset pre-loaded applications for other users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20125
In GBoard, there is a possible way to bypass factory reset protections due to a sandbox escape. This could lead to local escalation of privilege if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for ex...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20133
In setDiscoverableTimeout of AdapterService.java, there is a possible bypass of user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: And...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20134
In readArguments of CallSubjectDialog.java, there is a possible way to trick the user to call the wrong phone number due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed f...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20135
In writeToParcel of GateKeeperResponse.java, there is a possible parcel format mismatch. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2021-39738
In CarSetings, there is a possible to pair BT device bypassing user's consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidV...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
7.2
CVSSv2
CVE-2022-20114
In placeCall of TelecomManager.java, there is a possible way for an application to keep itself running with foreground service importance due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...
Google Android 10.0
Google Android 11.0
Google Android 12.0
Google Android 12.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »