Google: >> Android >> 10.0 Security Vulnerabilities
In camera driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-10-14
In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-10-14
In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-10-14
In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-10-14
In cell service, there is a missing permission check. This could lead to local denial of service in cell service with no additional execution privileges needed.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-10-14
In music service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-10-14
In jpg driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-10-14
In CarSettings of app packages, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege in Bluetooth settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-220741473
CVSS Score
8.8
EPSS Score
0.001
Published
2022-10-11
In addAutomaticZenRule of ZenModeHelper.java, there is a possible permanent degradation of performance due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-235823407
CVSS Score
5.5
EPSS Score
0.0
Published
2022-10-11
In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-205570663
CVSS Score
7.5
EPSS Score
0.004
Published
2022-10-11