Google Android vulnerabilities

CVE-2021-0881 [HIGH] CVE-2021-0881: PowerVR-GPU Android Security Bulletin 2023-04-01 CVE: CVE-2021-0881 Severity: HIGH Component: PowerVR-GPU References: A-270396350*

CVE-2022-42716 [HIGH] CVE-2022-42716: Mali Android Security Bulletin 2023-04-01 CVE: CVE-2022-42716 Severity: HIGH Component: Mali References: A-260148146*

CVE-2021-0884 [HIGH] CVE-2021-0884: PowerVR-GPU Android Security Bulletin 2023-04-01 CVE: CVE-2021-0884 Severity: HIGH Component: PowerVR-GPU References: A-270393454*

CVE-2021-0879 [HIGH] CVE-2021-0879: PowerVR-GPU Android Security Bulletin 2023-04-01 CVE: CVE-2021-0879 Severity: HIGH Component: PowerVR-GPU References: A-270397970*

CVE-2021-0885 [HIGH] CVE-2021-0885: PowerVR-GPU Android Security Bulletin 2023-04-01 CVE: CVE-2021-0885 Severity: HIGH Component: PowerVR-GPU References: A-270401914*

CVE-2021-0872 [HIGH] CVE-2021-0872: PowerVR-GPU Android Security Bulletin 2023-04-01 CVE: CVE-2021-0872 Severity: HIGH Component: PowerVR-GPU References: A-270401229*

CVE-2022-36449 [MEDIUM] CVE-2022-36449: Mali Android Security Bulletin 2023-04-01 CVE: CVE-2022-36449 Severity: HIGH Component: Mali References: A-259983537*

CVE-2023-20951 [CRITICAL] CWE-787 CVE-2023-20951: In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible out of bounds write due to a missi In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-258652631

CVE-2022-20532 [CRITICAL] CWE-190 CVE-2022-20532: In parseTrackFragmentRun() of MPEG4Extractor.cpp, there is a possible out of bounds read due to an i In parseTrackFragmentRun() of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-232242894

CVE-2023-20954 [CRITICAL] CWE-787 CVE-2023-20954: In SDP_AddAttribute of sdp_db.cc, there is a possible out of bounds write due to an incorrect bounds In SDP_AddAttribute of sdp_db.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-261867748

CVE-2023-21004 [HIGH] CWE-862 CVE-2023-21004: In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission In getAvailabilityStatus of several Transcode Permission Controllers, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-261193664

CVE-2023-20917 [HIGH] CVE-2023-20917: In onTargetSelected of ResolverActivity.java, there is a possible way to share a wrong file due to a In onTargetSelected of ResolverActivity.java, there is a possible way to share a wrong file due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-242605

CVE-2023-21000 [HIGH] CWE-667 CVE-2023-21000: In MediaCodec.cpp, there is a possible use after free due to improper locking. This could lead to lo In MediaCodec.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-194783918

CVE-2023-20947 [HIGH] CVE-2023-20947: In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permiss In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permission granted due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-23

CVE-2023-20995 [HIGH] CWE-269 CVE-2023-20995: In captureImage of CustomizedSensor.cpp, there is a possible way to bypass the fingerprint unlock du In captureImage of CustomizedSensor.cpp, there is a possible way to bypass the fingerprint unlock due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-241910279

CVE-2023-20985 [HIGH] CWE-787 CVE-2023-20985: In BTA_GATTS_HandleValueIndication of bta_gatts_api.cc, there is a possible out of bounds write due In BTA_GATTS_HandleValueIndication of bta_gatts_api.cc, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-245915315

CVE-2023-20957 [HIGH] CWE-266 CVE-2023-20957: In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protecti In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protections due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12LAndroid ID: A-25842

CVE-2023-21034 [HIGH] CWE-863 CVE-2023-21034: In multiple functions of SensorService.cpp, there is a possible access of accurate sensor data due t In multiple functions of SensorService.cpp, there is a possible access of accurate sensor data due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-230358834

CVE-2023-20993 [HIGH] CWE-755 CVE-2023-20993: In multiple functions of SnoozeHelper.java, there is a possible failure to persist settings due to a In multiple functions of SnoozeHelper.java, there is a possible failure to persist settings due to an uncaught exception. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-26

CVE-2023-20971 [HIGH] CWE-863 CVE-2023-20971: In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerou In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.