Google Android vulnerabilities

CVE-2023-48416 [HIGH] CWE-476 CVE-2023-48416: In multiple locations, there is a possible null dereference due to a missing null check. This could In multiple locations, there is a possible null dereference due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48405 [MEDIUM] CVE-2023-48405: there is a possible way for the secure world to write to NS memory due to a logic error in the code. there is a possible way for the secure world to write to NS memory due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48399 [MEDIUM] CWE-125 CVE-2023-48399: In ProtocolMiscATCommandAdapter::Init() of protocolmiscadapter.cpp, there is a possible out of bound In ProtocolMiscATCommandAdapter::Init() of protocolmiscadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

CVE-2023-48406 [MEDIUM] CWE-269 CVE-2023-48406: there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic er there is a possible permanent DoS or way for the modem to boot unverified firmware due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48415 [MEDIUM] CWE-125 CVE-2023-48415: In Init of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds In Init of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48413 [MEDIUM] CWE-125 CVE-2023-48413: In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds ch In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-45866 [MEDIUM] CVE-2023-45866: Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate an Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. An example affected package is bluez 5.64-0ubuntu1 in Ub

CVE-2023-48408 [MEDIUM] CWE-125 CVE-2023-48408: In ProtocolNetSimFileInfoAdapter() of protocolnetadapter.cpp, there is a possible out of bounds read In ProtocolNetSimFileInfoAdapter() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

CVE-2023-48414 [MEDIUM] CWE-416 CVE-2023-48414: In the Pixel Camera Driver, there is a possible use after free due to a logic error in the code. Thi In the Pixel Camera Driver, there is a possible use after free due to a logic error in the code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48411 [MEDIUM] CWE-125 CVE-2023-48411: In SignalStrengthAdapter::FillGsmSignalStrength() of protocolmiscadapter.cpp, there is a possible ou In SignalStrengthAdapter::FillGsmSignalStrength() of protocolmiscadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation.

CVE-2023-48422 [MEDIUM] CWE-125 CVE-2023-48422: In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds ch In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48401 [MEDIUM] CWE-125 CVE-2023-48401: In GetSizeOfEenlRecords of protocoladapter.cpp, there is a possible out of bounds read due to an inc In GetSizeOfEenlRecords of protocoladapter.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48420 [MEDIUM] CWE-362 CVE-2023-48420: there is a possible use after free due to a race condition. This could lead to local escalation of p there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48412 [MEDIUM] CVE-2023-48412: In private_handle_t of mali_gralloc_buffer.h, there is a possible information leak due to a logic e In private_handle_t of mali_gralloc_buffer.h, there is a possible information leak due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-48397 [MEDIUM] CWE-125 CVE-2023-48397: In Init of protocolcalladapter.cpp, there is a possible out of bounds read due to a missing bounds c In Init of protocolcalladapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-21164 [CRITICAL] CVE-2023-21164: In DevmemIntMapPMR of devicemem_server.c, there is a possible arbitrary code execution due to a use In DevmemIntMapPMR of devicemem_server.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-21162 [CRITICAL] CVE-2023-21162: In RGXUnbackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use afte In RGXUnbackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-21218 [CRITICAL] CVE-2023-21218: In PMRChangeSparseMemOSMem of physmem_osmem_linux.c, there is a possible out of bounds write due to In PMRChangeSparseMemOSMem of physmem_osmem_linux.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-21215 [CRITICAL] CVE-2023-21215: In DevmemIntAcquireRemoteCtx of devicemem_server.c, there is a possible arbitrary code execution due In DevmemIntAcquireRemoteCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2023-21163 [CRITICAL] CVE-2023-21163: In PMR_ReadBytes of pmr.c, there is a possible arbitrary code execution due to a use after free. Thi In PMR_ReadBytes of pmr.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.