Search Results (Refine Search)
- Keyword (text search): cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2023-21239 |
In visitUris of Notification.java, there is a possible way to leak image data across user boundaries due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Published: July 12, 2023; 8:15:23 PM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-21238 |
In visitUris of RemoteViews.java, there is a possible leak of images between users due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Published: July 12, 2023; 8:15:23 PM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-21145 |
In updatePictureInPictureMode of ActivityRecord.java, there is a possible bypass of background launch restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Published: July 12, 2023; 8:15:23 PM -0400 |
V4.0:(not available) V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2023-20942 |
In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Published: July 12, 2023; 8:15:23 PM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-20918 |
In getPendingIntentLaunchFlags of ActivityOptions.java, there is a possible elevation of privilege due to a confused deputy with no additional execution privileges needed. User interaction is not needed for exploitation. Published: July 12, 2023; 8:15:23 PM -0400 |
V4.0:(not available) V3.1: 9.8 CRITICAL V2.0:(not available) |
CVE-2023-33905 |
In iwnpi server, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. Published: July 12, 2023; 5:15:14 AM -0400 |
V4.0:(not available) V3.1: 4.4 MEDIUM V2.0:(not available) |
CVE-2023-33903 |
In FM service, there is a possible missing params check. This could lead to local denial of service with System execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 4.4 MEDIUM V2.0:(not available) |
CVE-2023-33900 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33899 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33898 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33897 |
In libimpl-ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 4.4 MEDIUM V2.0:(not available) |
CVE-2023-33896 |
In libimpl-ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 4.4 MEDIUM V2.0:(not available) |
CVE-2023-33895 |
In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33894 |
In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33893 |
In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33892 |
In fastDial service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33891 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33890 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33889 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:13 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2023-33888 |
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. Published: July 12, 2023; 5:15:12 AM -0400 |
V4.0:(not available) V3.1: 5.5 MEDIUM V2.0:(not available) |