Google: >> Android >> 12.0 Security Vulnerabilities
In cp_dump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-06-06
In cp_dump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-06-06
In telephony service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-06-06
Incorrect access control in luowice v3.5.18 allows attackers to access cloud source code information via modification fo the Verify parameter in a warning message.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-30
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-05-30
In verifyReplacingVersionCode of InstallPackageHelper.java, there is a possible way to downgrade system apps below system image version due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-256202273
CVSS Score
6.7
EPSS Score
0.0
Published
2023-05-15
In unflattenString8 of Sensor.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-269014004
CVSS Score
5.5
EPSS Score
0.0
Published
2023-05-15
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07581655; Issue ID: ALPS07581655.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-05-15
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07576951; Issue ID: ALPS07576951.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-05-15
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07576935; Issue ID: ALPS07576935.
CVSS Score
4.4
EPSS Score
0.0
Published
2023-05-15