Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 11.0 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-39631
In clear_data_dlg_text of strings.xml, there is a possible situation when "Clear storage" functionality sets up the wrong security/privacy expectations due to a misleading message. This could lead to local information disclosure with no additional execution privileges n...
Google Android 10.0
Google Android 11.0
Google Android 12.0
6.5
CVSSv3
CVE-2021-39667
In ih264d_parse_decode_slice of ih264d_parse_slice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: Andro...
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.3
CVSSv3
CVE-2021-39691
In WindowManager, there is a possible tapjacking attack due to an incorrect window flag when processing user input. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersion...
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.8
CVSSv3
CVE-2021-39704
In deleteNotificationChannelGroup of NotificationManagerService.java, there is a possible way to run foreground service without user notification due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User int...
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.8
CVSSv3
CVE-2021-39707
In onReceive of AppRestrictionsFragment.java, there is a possible way to start a phone call without permissions due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitati...
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-44431
In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-44438
In messaging service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-44440
In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.1
CVSSv3
CVE-2022-28783
Improper validation of removing package name in Galaxy Themes prior to SMR May-2022 Release 1 allows malicious users to uninstall arbitrary packages without permission. The patch adds proper validation logic for removing package name.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-28786
Improper buffer size check logic in aviextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »