Google Android vulnerabilities

CVE-2023-21032 [MEDIUM] CWE-125 CVE-2023-21032: In _ufdt_output_node_to_fdt of ufdt_convert.c, there is a possible out of bounds read due to a heap In _ufdt_output_node_to_fdt of ufdt_convert.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-248085351

CVE-2023-21006 [MEDIUM] CWE-125 CVE-2023-21006: In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-257030027

CVE-2023-21007 [MEDIUM] CWE-125 CVE-2023-21007: In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-257029965

CVE-2023-20956 [MEDIUM] CWE-787 CVE-2023-20956: In Import of C2SurfaceSyncObj.cpp, there is a possible out of bounds write due to a missing bounds c In Import of C2SurfaceSyncObj.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-240140929

CVE-2022-20467 [MEDIUM] CVE-2022-20467: In isBluetoothShareUri of BluetoothOppUtility.java, there is a possible incorrect file read due to a In isBluetoothShareUri of BluetoothOppUtility.java, there is a possible incorrect file read due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-225880741

CVE-2023-20982 [MEDIUM] CWE-125 CVE-2023-20982: In btm_read_tx_power_complete of btm_acl.cc, there is a possible out of bounds read due to a missing In btm_read_tx_power_complete of btm_acl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-260568083

CVE-2023-20998 [MEDIUM] CWE-835 CVE-2023-20998: In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper i In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper input validation. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-246749936

CVE-2023-20990 [MEDIUM] CWE-125 CVE-2023-20990: In btm_ble_rand_enc_complete of btm_ble.cc, there is a possible out of bounds read due to a missing In btm_ble_rand_enc_complete of btm_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-260568354

CVE-2023-20983 [MEDIUM] CWE-125 CVE-2023-20983: In btm_ble_rand_enc_complete of btm_ble.cc, there is a possible out of bounds read due to a missing In btm_ble_rand_enc_complete of btm_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-260569449

CVE-2023-20968 [MEDIUM] CWE-125 CVE-2023-20968: In multiple functions of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun In multiple functions of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-262235935

CVE-2023-21010 [MEDIUM] CWE-125 CVE-2023-21010: In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-257029915

CVE-2023-21020 [MEDIUM] CWE-416 CVE-2023-21020: In registerSignalHandlers of main.c, there is a possible local arbitrary code execution due to a use In registerSignalHandlers of main.c, there is a possible local arbitrary code execution due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-256591441

CVE-2023-20992 [MEDIUM] CWE-125 CVE-2023-20992: In on_iso_link_quality_read of btm_iso_impl.h, there is a possible out of bounds read due to a missi In on_iso_link_quality_read of btm_iso_impl.h, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-260568750

CVE-2023-20996 [MEDIUM] CWE-835 CVE-2023-20996: In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper i In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper input validation. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-246749764

CVE-2023-20989 [MEDIUM] CWE-125 CVE-2023-20989: In btm_ble_write_adv_enable_complete of btm_ble_gap.cc, there is a possible out of bounds read due t In btm_ble_write_adv_enable_complete of btm_ble_gap.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-260568367

CVE-2023-20970 [MEDIUM] CWE-125 CVE-2023-20970: In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-262236005

CVE-2023-21009 [MEDIUM] CWE-125 CVE-2023-21009: In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-257029925

CVE-2023-21025 [MEDIUM] CWE-125 CVE-2023-21025: In ufdt_local_fixup_prop of ufdt_overlay.c, there is a possible out of bounds read due to an incorre In ufdt_local_fixup_prop of ufdt_overlay.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-254929746

CVE-2023-20980 [MEDIUM] CWE-125 CVE-2023-20980: In btu_ble_ll_conn_param_upd_evt of btu_hcif.cc, there is a possible out of bounds read due to a mis In btu_ble_ll_conn_param_upd_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-260230274

CVE-2023-20986 [MEDIUM] CWE-125 CVE-2023-20986: In btm_ble_clear_resolving_list_completecomplete of btm_ble_privacy.cc, there is a possible out of b In btm_ble_clear_resolving_list_completecomplete of btm_ble_privacy.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-255304475