Filtered by vendor Google
Subscriptions
Filtered by product Android
Subscriptions
Total
7842 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-25833 | 1 Google | 1 Android | 2024-08-03 | 3.3 Low |
Improper authentication in ImsService prior to SMR Apr-2022 Release 1 allows attackers to get IMSI without READ_PRIVILEGED_PHONE_STATE permission. | ||||
CVE-2022-25817 | 1 Google | 1 Android | 2024-08-03 | 4 Medium |
Improper authentication in One UI Home prior to SMR Mar-2022 Release 1 allows attacker to generate pinned-shortcut without user consent. | ||||
CVE-2022-25814 | 1 Google | 1 Android | 2024-08-03 | 5.5 Medium |
PendingIntent hijacking vulnerability in Wearable Manager Installer prior to SMR Mar-2022 Release 1 allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent. | ||||
CVE-2022-25822 | 1 Google | 1 Android | 2024-08-03 | 4 Medium |
An use after free vulnerability in sdp driver prior to SMR Mar-2022 Release 1 allows kernel crash. | ||||
CVE-2022-25819 | 2 Google, Samsung | 2 Android, Exynos | 2024-08-03 | 5.3 Medium |
OOB read vulnerability in hdcp2 device node prior to SMR Mar-2022 Release 1 allow an attacker to view Kernel stack memory. | ||||
CVE-2022-24928 | 1 Google | 1 Android | 2024-08-03 | 5.9 Medium |
Security misconfiguration of RKP in kernel prior to SMR Mar-2022 Release 1 allows a system not to be protected by RKP. | ||||
CVE-2022-24932 | 2 Google, Samsung | 2 Android, Cloud | 2024-08-03 | 4.2 Medium |
Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard. | ||||
CVE-2022-24925 | 1 Google | 1 Android | 2024-08-03 | 4.4 Medium |
Improper input validation vulnerability in SettingsProvider prior to Android S(12) allows privileged attackers to trigger a permanent denial of service attack on a victim's devices. | ||||
CVE-2022-24931 | 1 Google | 1 Android | 2024-08-03 | 7.9 High |
Improper access control vulnerability in dynamic receiver in ApkInstaller prior to SMR MAR-2022 Release allows unauthorized attackers to execute arbitrary activity without a proper permission | ||||
CVE-2022-24929 | 1 Google | 1 Android | 2024-08-03 | 4.1 Medium |
Unprotected Activity in AppLock prior to SMR Mar-2022 Release 1 allows attacker to change the list of locked app without authentication. | ||||
CVE-2022-24001 | 1 Google | 1 Android | 2024-08-03 | 3.8 Low |
Information disclosure vulnerability in Edge Panel prior to Android S(12) allows physical attackers to access screenshot in clipboard via Edge Panel. | ||||
CVE-2022-23999 | 1 Google | 1 Android | 2024-08-03 | 3.9 Low |
PendingIntent hijacking vulnerability in CpaReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent. | ||||
CVE-2022-24000 | 1 Google | 1 Android | 2024-08-03 | 3.9 Low |
PendingIntent hijacking vulnerability in DataUsageReminderReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent. | ||||
CVE-2022-23998 | 2 Google, Samsung | 2 Android, Camera | 2024-08-03 | 6.2 Medium |
Improper access control vulnerability in Camera prior to versions 11.1.02.16 in Android R(11), 10.5.03.77 in Android Q(10) and 9.0.6.68 in Android P(9) allows untrusted applications to take a picture in screenlock status. | ||||
CVE-2022-23729 | 1 Google | 1 Android | 2024-08-03 | 7.8 High |
When the device is in factory state, it can be access the shell without adb authentication process. The LG ID is LVE-SMP-210010. | ||||
CVE-2022-23728 | 1 Google | 1 Android | 2024-08-03 | 6.1 Medium |
Attacker can reset the device with AT Command in the process of rebooting the device. The LG ID is LVE-SMP-210011. | ||||
CVE-2022-23426 | 1 Google | 1 Android | 2024-08-03 | 4.4 Medium |
A vulnerability using PendingIntent in DeX Home and DeX for PC prior to SMR Feb-2022 Release 1 allows attackers to access files with system privilege. | ||||
CVE-2022-23433 | 2 Google, Samsung | 2 Android, Reminder | 2024-08-03 | 4.3 Medium |
Improper access control vulnerability in Reminder prior to versions 12.3.01.3000 in Android S(12), 12.2.05.6000 in Android R(11) and 11.6.08.6000 in Andoid Q(10) allows attackers to register reminders or execute exporeted activities remotely. | ||||
CVE-2022-23432 | 2 Google, Samsung | 2 Android, Exynos | 2024-08-03 | 6.4 Medium |
An improper input validation in SMC_SRPMB_WSM handler of RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution. | ||||
CVE-2022-23434 | 2 Google, Samsung | 2 Android, Bixby | 2024-08-03 | 4.4 Medium |
A vulnerability using PendingIntent in Bixby Vision prior to versions 3.7.60.8 in Android S(12), 3.7.50.6 in Andorid R(11) and below allows attackers to execute privileged action by hijacking and modifying the intent. |