Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 12.0 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-20499
In validateForCommonR1andR2 of PasspointConfiguration.java, uncaught errors in parsing stored configs could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
Google Android 12.0
Google Android 12.1
Google Android 13.0
6.7
CVSSv3
CVE-2023-20630
In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628505; Issue ID: ALPS07628505.
Google Android 11.0
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2023-20632
In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628506; Issue ID: ALPS07628506.
Google Android 11.0
Google Android 12.0
Google Android 13.0
6.7
CVSSv3
CVE-2023-20633
In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628508; Issue ID: ALPS07628508.
Google Android 11.0
Google Android 12.0
Google Android 13.0
5.5
CVSSv3
CVE-2022-28780
Improper access control vulnerability in Weather prior to SMR May-2022 Release 1 allows that attackers can access location information that set in Weather without permission. The patch adds proper protection to prevent access to location information.
Google Android 10.0
Google Android 11.0
Google Android 12.0
7.1
CVSSv3
CVE-2022-28783
Improper validation of removing package name in Galaxy Themes prior to SMR May-2022 Release 1 allows malicious users to uninstall arbitrary packages without permission. The patch adds proper validation logic for removing package name.
Google Android 10.0
Google Android 11.0
Google Android 12.0
3.3
CVSSv3
CVE-2022-28784
Path traversal vulnerability in Galaxy Themes prior to SMR May-2022 Release 1 allows malicious users to list file names in arbitrary directory as system user. The patch addresses incorrect implementation of file path validation check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-28785
Improper buffer size check logic in aviextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
5.5
CVSSv3
CVE-2022-28786
Improper buffer size check logic in aviextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.
Google Android 10.0
Google Android 11.0
Google Android 12.0
6.7
CVSSv3
CVE-2023-20755
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07509605.
Google Android 11.0
Google Android 12.0
Google Android 13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »