Google Android vulnerabilities

CVE-2022-27824 [HIGH] CWE-125 CVE-2022-27824: Improper size check of in sapefd_parse_meta_DESCRIPTION function of libsapeextractor library prior t Improper size check of in sapefd_parse_meta_DESCRIPTION function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file

CVE-2022-27829 [HIGH] CWE-20 CVE-2022-27829: Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.

CVE-2022-20066 [MEDIUM] CWE-755 CVE-2022-20066: In atf (hwfde), there is a possible leak of sensitive information due to incorrect error handling. T In atf (hwfde), there is a possible leak of sensitive information due to incorrect error handling. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06171729; Issue ID: ALPS06171729.

CVE-2022-20081 [MEDIUM] CWE-295 CVE-2022-20081: In A-GPS, there is a possible man in the middle attack due to improper certificate validation. This In A-GPS, there is a possible man in the middle attack due to improper certificate validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06461919; Issue ID: ALPS06461919.

CVE-2022-20067 [MEDIUM] CWE-787 CVE-2022-20067: In mdp, there is a possible out of bounds write due to a missing bounds check. This could lead to lo In mdp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05836585; Issue ID: ALPS05836585.

CVE-2022-20063 [MEDIUM] CWE-787 CVE-2022-20063: In atf (spm), there is a possible out of bounds write due to a missing bounds check. This could lead In atf (spm), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06171715; Issue ID: ALPS06171715.

CVE-2022-26091 [MEDIUM] CWE-284 CVE-2022-26091: Improper access control vulnerability in Knox Manage prior to SMR Apr-2022 Release 1 allows that phy Improper access control vulnerability in Knox Manage prior to SMR Apr-2022 Release 1 allows that physical attackers can bypass Knox Manage using a function key of hardware keyboard.

CVE-2022-20070 [MEDIUM] CWE-787 CVE-2022-20070: In ssmr, there is a possible out of bounds write due to a missing bounds check. This could lead to l In ssmr, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS06362920; Issue ID: ALPS06362920.

CVE-2022-27821 [MEDIUM] CWE-125 CVE-2022-27821: Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to ca Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image file.

CVE-2022-20074 [MEDIUM] CWE-125 CVE-2022-20074: In preloader (partition), there is a possible out of bounds write due to a missing bounds check. Thi In preloader (partition), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06183301; Issue ID: ALPS06183301.

CVE-2022-20073 [MEDIUM] CWE-191 CVE-2022-20073: In preloader (usb), there is a possible out of bounds write due to a integer underflow. This could l In preloader (usb), there is a possible out of bounds write due to a integer underflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06160841; Issue ID: ALPS06160841.

CVE-2022-20068 [MEDIUM] CWE-59 CVE-2022-20068: In mobile_log_d, there is a possible symbolic link following due to an improper link resolution. Thi In mobile_log_d, there is a possible symbolic link following due to an improper link resolution. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06308907; Issue ID: ALPS06308907.

CVE-2022-20076 [MEDIUM] CWE-755 CVE-2022-20076: In ged, there is a possible memory corruption due to an incorrect error handling. This could lead to In ged, there is a possible memory corruption due to an incorrect error handling. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05838808; Issue ID: ALPS05839556.

CVE-2022-20071 [MEDIUM] CWE-295 CVE-2022-20071: In ccu, there is a possible escalation of privilege due to a missing certificate validation. This co In ccu, there is a possible escalation of privilege due to a missing certificate validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS06183315; Issue ID: ALPS06183315.

CVE-2022-27822 [MEDIUM] CWE-284 CVE-2022-27822: Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.

CVE-2022-20080 [MEDIUM] CWE-362 CVE-2022-20080: In SUB2AF, there is a possible memory corruption due to a race condition. This could lead to local e In SUB2AF, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05881290; Issue ID: ALPS05881290.

CVE-2022-20077 [MEDIUM] CWE-362 CVE-2022-20077: In vow, there is a possible memory corruption due to a race condition. This could lead to local esca In vow, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05837742; Issue ID: ALPS05852812.

CVE-2022-20062 [MEDIUM] CWE-416 CVE-2022-20062: In mdp, there is a possible memory corruption due to a use after free. This could lead to local esca In mdp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS05836418; Issue ID: ALPS05836418.

CVE-2022-20069 [MEDIUM] CWE-190 CVE-2022-20069: In preloader (usb), there is a possible out of bounds write due to an integer overflow. This could l In preloader (usb), there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06160425; Issue ID: ALPS06160425.

CVE-2022-20052 [MEDIUM] CWE-416 CVE-2022-20052: In mdp, there is a possible memory corruption due to a use after free. This could lead to local esca In mdp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS05836642; Issue ID: ALPS05836642.