Google Android vulnerabilities

CVE-2023-40121 [MEDIUM] CWE-502 CVE-2023-40121: In appendEscapedSQLString of DatabaseUtils.java, there is a possible SQL injection due to unsafe des In appendEscapedSQLString of DatabaseUtils.java, there is a possible SQL injection due to unsafe deserialization. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40137 [LOW] CVE-2023-40137: In multiple functions of DialogFillUi.java, there is a possible way to view another user's images du In multiple functions of DialogFillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40135 [LOW] CVE-2023-40135: In applyCustomDescription of SaveUi.java, there is a possible way to view another user's images due In applyCustomDescription of SaveUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40136 [LOW] CVE-2023-40136: In setHeader of DialogFillUi.java, there is a possible way to view another user's images due to a co In setHeader of DialogFillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40127 [LOW] CVE-2023-40127: In multiple locations, there is a possible way to access screenshots due to a confused deputy. This In multiple locations, there is a possible way to access screenshots due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40134 [LOW] CVE-2023-40134: In isFullScreen of FillUi.java, there is a possible way to view another user's images due to a confu In isFullScreen of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40138 [LOW] CVE-2023-40138: In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused de In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35656 [HIGH] CWE-125 CVE-2023-35656: In multiple functions of protocolembmsadapter.cpp, there is a possible out of bounds read due t In multiple functions of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35663 [HIGH] CWE-125 CVE-2023-35663: In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bou In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35646 [CRITICAL] CWE-787 CVE-2023-35646: In TBD of TBD, there is a possible stack buffer overflow due to a missing bounds check. This could l In TBD of TBD, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35647 [CRITICAL] CWE-125 CVE-2023-35647: In ProtocolEmbmsGlobalCellIdAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of In ProtocolEmbmsGlobalCellIdAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

CVE-2023-35648 [CRITICAL] CWE-125 CVE-2023-35648: In ProtocolMiscLceIndAdapter::GetConfLevel() of protocolmiscadapter.cpp, there is a possible out of In ProtocolMiscLceIndAdapter::GetConfLevel() of protocolmiscadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

CVE-2023-35662 [CRITICAL] CWE-787 CVE-2023-35662: there is a possible out of bounds write due to buffer overflow. This could lead to remote code execu there is a possible out of bounds write due to buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-3781 [HIGH] CWE-667 CVE-2023-3781: there is a possible use-after-free write due to improper locking. This could lead to local escalatio there is a possible use-after-free write due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35649 [HIGH] CWE-787 CVE-2023-35649: In several functions of Exynos modem files, there is a possible out of bounds write due to a missing In several functions of Exynos modem files, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35661 [HIGH] CWE-125 CVE-2023-35661: In ProfSixDecomTcpSACKoption of RohcPacketCommon.cpp, there is a possible out of bounds read due to In ProfSixDecomTcpSACKoption of RohcPacketCommon.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40141 [HIGH] CWE-787 CVE-2023-40141: In temp_residency_name_store of thermal_metrics.c, there is a possible out of bounds write due to a In temp_residency_name_store of thermal_metrics.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-40142 [HIGH] CVE-2023-40142: In TBD of TBD, there is a possible way to bypass carrier restrictions due to a logic error in the co In TBD of TBD, there is a possible way to bypass carrier restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-35652 [HIGH] CWE-125 CVE-2023-35652: In ProtocolEmergencyCallListIndAdapter::Init of protocolcalladapter.cpp, there is a possible out of In ProtocolEmergencyCallListIndAdapter::Init of protocolcalladapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

CVE-2023-35660 [MEDIUM] CWE-416 CVE-2023-35660: In lwis_transaction_client_cleanup of lwis_transaction.c, there is a possible way to corrupt memory In lwis_transaction_client_cleanup of lwis_transaction.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.