Filtered by vendor Google
Subscribe
Total
13548 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-48452 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 4.4 MEDIUM |
|
In Ifaa service, there is a possible missing permission check. This could lead to local denial of service with System execution privileges needed
|
|||||
| CVE-2022-48451 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 4.1 MEDIUM |
|
In bluetooth service, there is a possible out of bounds write due to race condition. This could lead to local denial of service with System execution privileges needed.
|
|||||
| CVE-2022-48450 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 4.4 MEDIUM |
|
In bluetooth service, there is a possible missing params check. This could lead to local denial of service with System execution privileges needed.
|
|||||
| CVE-2022-47484 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed.
|
|||||
| CVE-2022-47473 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
|
|||||
| CVE-2022-47472 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
|
|||||
| CVE-2022-47462 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
In telephone service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
|
|||||
| CVE-2022-47461 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 6.7 MEDIUM |
|
In telephone service, there is a missing permission check. This could lead to local escalation of privilege with system execution privileges needed.
|
|||||
| CVE-2022-47460 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In gpu device, there is a memory corruption due to a use after free. This could lead to local denial of service in kernel.
|
|||||
| CVE-2022-47459 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
|
|||||
| CVE-2022-47457 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
|
|||||
| CVE-2022-47456 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
|
|||||
| CVE-2022-47455 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
|
|||||
| CVE-2022-47454 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
|
|||||
| CVE-2022-47453 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In wcn service, there is a possible missing params check. This could lead to local denial of service in wcn service.
|
|||||
| CVE-2022-47353 | 2 Google, Unisoc | 7 Android, S8000, T610 and 4 more | 2024-11-21 | N/A | 4.4 MEDIUM |
|
In vdsp device, there is a possible system crash due to improper input validation.This could lead to local denial of service with System execution privileges needed
|
|||||
| CVE-2022-47352 | 2 Google, Unisoc | 3 Android, T610, T618 | 2024-11-21 | N/A | 4.4 MEDIUM |
|
In camera driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
|
|||||
| CVE-2022-47351 | 2 Google, Unisoc | 10 Android, S8000, T606 and 7 more | 2024-11-21 | N/A | 4.4 MEDIUM |
|
In camera driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
|
|||||
| CVE-2022-47350 | 2 Google, Unisoc | 12 Android, S8000, Sc9863a and 9 more | 2024-11-21 | N/A | 4.4 MEDIUM |
|
In camera driver, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed
|
|||||
| CVE-2022-46647 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 2.2 LOW |
|
Insertion of sensitive information into log file for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
|
|||||
| CVE-2022-46646 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 2.2 LOW |
|
Exposure of sensitive information to an unauthorized actor for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
|
|||||
| CVE-2022-46301 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 1.9 LOW |
|
Improper Initialization for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access.
|
|||||
| CVE-2022-46299 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 3.3 LOW |
|
Insufficient control flow management for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
|
|||||
| CVE-2022-46298 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 1.9 LOW |
|
Incomplete cleanup for some Intel Unison software may allow a privileged user to potentially enable denial of service via local access.
|
|||||
| CVE-2022-45469 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 2.2 LOW |
|
Improper input validation for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via local access.
|
|||||
| CVE-2022-45109 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 3.3 LOW |
|
Improper initialization for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
|
|||||
| CVE-2022-44435 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In messaging service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed.
|
|||||
| CVE-2022-43666 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 3.3 LOW |
|
Exposure of sensitive system information due to uncleared debug information for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
|
|||||
| CVE-2022-43477 | 4 Apple, Google, Intel and 1 more | 4 Iphone Os, Android, Unison Software and 1 more | 2024-11-21 | N/A | 3.3 LOW |
|
Incomplete cleanup for some Intel Unison software may allow an authenticated user to potentially enable information disclosure via local access.
|
|||||
| CVE-2022-42540 | 1 Google | 1 Android | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Elevation of privilege
|
|||||
| CVE-2022-42539 | 1 Google | 1 Android | 2024-11-21 | N/A | 7.5 HIGH |
|
Information disclosure
|
|||||
| CVE-2022-42538 | 1 Google | 1 Android | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Elevation of privilege
|
|||||
| CVE-2022-42537 | 1 Google | 1 Android | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Remote code execution
|
|||||
| CVE-2022-42536 | 1 Google | 1 Android | 2024-11-21 | N/A | 9.8 CRITICAL |
|
Remote code execution
|
|||||
| CVE-2022-42528 | 1 Google | 1 Android | 2024-11-21 | N/A | 5.5 MEDIUM |
|
In ffa_mrd_prot of shared_mem.c, there is a possible ID due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-242203672References: N/A
|
|||||
| CVE-2022-42500 | 1 Google | 1 Android | 2024-11-21 | N/A | 6.7 MEDIUM |
|
In OEM_OnRequest of sced.cpp, there is a possible shell command execution due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-239701389References: N/A
|
|||||
| CVE-2022-41911 | 1 Google | 1 Tensorflow | 2024-11-21 | N/A | 4.8 MEDIUM |
|
TensorFlow is an open source platform for machine learning. When printing a tensor, we get it's data as a `const char*` array (since that's the underlying storage) and then we typecast it to the element type. However, conversions from `char` to `bool` are undefined if the `char` is not `0` or `1`, so sanitizers/fuzzers will crash. The issue has been patched in GitHub commit `1be74370327`. The fix will be included in TensorFlow 2.11.0. We will also cherrypick this commit on TensorFlow 2.10.1, Ten ...
Show More |
|||||
| CVE-2022-41910 | 1 Google | 1 Tensorflow | 2024-11-21 | N/A | 4.8 MEDIUM |
|
TensorFlow is an open source platform for machine learning. The function MakeGrapplerFunctionItem takes arguments that determine the sizes of inputs and outputs. If the inputs given are greater than or equal to the sizes of the outputs, an out-of-bounds memory read or a crash is triggered. We have patched the issue in GitHub commit a65411a1d69edfb16b25907ffb8f73556ce36bb7. The fix will be included in TensorFlow 2.11.0. We will also cherrypick this commit on TensorFlow 2.8.4, 2.9.3, and 2.10.1.
|
|||||
| CVE-2022-41909 | 1 Google | 1 Tensorflow | 2024-11-21 | N/A | 4.8 MEDIUM |
|
TensorFlow is an open source platform for machine learning. An input `encoded` that is not a valid `CompositeTensorVariant` tensor will trigger a segfault in `tf.raw_ops.CompositeTensorVariantToComponents`. We have patched the issue in GitHub commits bf594d08d377dc6a3354d9fdb494b32d45f91971 and 660ce5a89eb6766834bdc303d2ab3902aef99d3d. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and ...
Show More |
|||||
| CVE-2022-41908 | 1 Google | 1 Tensorflow | 2024-11-21 | N/A | 4.8 MEDIUM |
|
TensorFlow is an open source platform for machine learning. An input `token` that is not a UTF-8 bytestring will trigger a `CHECK` fail in `tf.raw_ops.PyFunc`. We have patched the issue in GitHub commit 9f03a9d3bafe902c1e6beb105b2f24172f238645. The fix will be included in TensorFlow 2.11. We will also cherrypick this commit on TensorFlow 2.10.1, 2.9.3, and TensorFlow 2.8.4, as these are also affected and still in supported range.
|
|||||