Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 10.0 vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2022-28783
Improper validation of removing package name in Galaxy Themes prior to SMR May-2022 Release 1 allows malicious users to uninstall arbitrary packages without permission. The patch adds proper validation logic for removing package name.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-28785
Improper buffer size check logic in aviextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-28787
Improper buffer size check logic in wmfextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-28788
Improper buffer size check logic in aviextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
3.3
CVSSv3
CVE-2022-28794
Sensitive information exposure in low-battery dumpstate log prior to SMR Jun-2022 Release 1 allows local malicious users to get SIM card information.
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.8
CVSSv3
CVE-2021-39622
In GBoard, there is a possible way to bypass Factory Reset Protection due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Andr...
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2021-39631
In clear_data_dlg_text of strings.xml, there is a possible situation when "Clear storage" functionality sets up the wrong security/privacy expectations due to a misleading message. This could lead to local information disclosure with no additional execution privileges n...
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2021-39659
In sortSimPhoneAccountsForEmergency of CreateConnectionProcessor.java, there is a possible prevention of access to emergency calling due to an unhandled exception. In rare instances, this could lead to local denial of service with User execution privileges needed. User interactio...
Google Android 10.0
Google Android 11.0
Google Android 12.0
6.5
CVSSv3
CVE-2021-39667
In ih264d_parse_decode_slice of ih264d_parse_slice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andro...
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.8
CVSSv3
CVE-2021-39674
In btm_sec_connected and btm_sec_disconnected of btm_sec.cc file , there is a possible use after free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Andr...
Google Android 10.0
Google Android 11.0
Google Android 12.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »