Google Android vulnerabilities

9,646 known vulnerabilities affecting google/android.

Total CVEs

9,646

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL883HIGH5184MEDIUM3317LOW260UNKNOWN2

Vulnerabilities

Page 155 of 483

CVE-2022-20494MEDIUMCVSS 5.5v10.0v11.0+4 more2023-01-26

CVE-2022-20494 [MEDIUM] CWE-770 CVE-2022-20494: In AutomaticZenRule of AutomaticZenRule.java, there is a possible persistent DoS due to resource exh In AutomaticZenRule of AutomaticZenRule.java, there is a possible persistent DoS due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-24379420

nvdandroid

CVE-2022-20458MEDIUMCVSS 5.5v12.1vAndroid-12L2023-01-26

CVE-2022-20458 [MEDIUM] CWE-532 CVE-2022-20458: The logs of sensitive information (PII) or hardware identifier should only be printed in Android "us The logs of sensitive information (PII) or hardware identifier should only be printed in Android "userdebug" or "eng" build. StatusBarNotification.getKey() could contain sensitive information. However, CarNotificationListener.java, it prints out the StatusBarNotification.getKey() directly in logs, which could contain user's account name (i.e. PII),

nvd

CVE-2022-20214MEDIUMCVSS 4.7v10.0v11.0+2 more2023-01-26

CVE-2022-20214 [MEDIUM] CWE-1021 CVE-2022-20214: In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. In Car Settings app, the toggle button in Modify system settings is vulnerable to tapjacking attack. Attackers can overlay the toggle button to enable apps to modify system settings without user consent.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-183411210

nvd

CVE-2022-44427MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44427 [MEDIUM] CWE-122 CVE-2022-44427: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvdandroid

CVE-2022-44430MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44430 [MEDIUM] CWE-122 CVE-2022-44430: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvdandroid

CVE-2022-39083MEDIUMCVSS 6.7v10.0v11.0+1 more2023-01-04

CVE-2022-39083 [MEDIUM] CWE-77 CVE-2022-39083: In network service, there is a missing permission check. This could lead to local escalation of priv In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

nvd

CVE-2022-44428MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44428 [MEDIUM] CWE-122 CVE-2022-44428: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvdandroid

CVE-2022-44432MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44432 [MEDIUM] CWE-190 CVE-2022-44432: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvdandroid

CVE-2022-44426MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44426 [MEDIUM] CWE-190 CVE-2022-44426: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvdandroid

CVE-2022-44445MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44445 [MEDIUM] CWE-126 CVE-2022-44445: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvd

CVE-2022-44443MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44443 [MEDIUM] CWE-126 CVE-2022-44443: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvd

CVE-2022-39084MEDIUMCVSS 6.7v10.0v11.0+1 more2023-01-04

CVE-2022-39084 [MEDIUM] CWE-77 CVE-2022-39084: In network service, there is a missing permission check. This could lead to local escalation of priv In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

nvd

CVE-2022-44423MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44423 [MEDIUM] CWE-862 CVE-2022-44423: In music service, there is a missing permission check. This could lead to local denial of service in In music service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.

nvd

CVE-2022-44435MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44435 [MEDIUM] CWE-862 CVE-2022-44435: In messaging service, there is a missing permission check. This could lead to local denial of servic In messaging service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.

nvdandroid

CVE-2022-44446MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44446 [MEDIUM] CWE-126 CVE-2022-44446: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvd

CVE-2022-44439MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44439 [MEDIUM] CWE-862 CVE-2022-44439: In messaging service, there is a missing permission check. This could lead to local denial of servic In messaging service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.

nvd

CVE-2022-39118MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-39118 [MEDIUM] CWE-120 CVE-2022-39118: In sprd_sysdump driver, there is a possible out of bounds write due to a missing bounds check. This In sprd_sysdump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.

nvd

CVE-2022-44431MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-44431 [MEDIUM] CWE-787 CVE-2022-44431: In wlan driver, there is a possible missing bounds check. This could lead to local denial of service In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.

nvdandroid

CVE-2022-38683MEDIUMCVSS 5.5v10.0v11.0+1 more2023-01-04

CVE-2022-38683 [MEDIUM] CWE-862 CVE-2022-38683: In contacts service, there is a missing permission check. This could lead to local denial of service In contacts service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.

nvd

CVE-2022-39087MEDIUMCVSS 6.7v10.0v11.0+1 more2023-01-04

CVE-2022-39087 [MEDIUM] CWE-77 CVE-2022-39087: In network service, there is a missing permission check. This could lead to local escalation of priv In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed.

nvd

← Previous155 / 483Next →