Vulnerabilities > Google > Fuchsia
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-03 | CVE-2021-22556 | Integer Overflow or Wraparound vulnerability in Google Fuchsia The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that they don’t own, allowing them to control kernel memory from userspace. | 7.8 |
| 2022-05-03 | CVE-2022-0882 | Unspecified vulnerability in Google Fuchsia 4.1 A bug exists where an attacker can read the kernel log through exposed Zircon kernel addresses without the required capability ZX_RSRC_KIND_ROOT. | 5.5 |
| 2022-02-25 | CVE-2022-0247 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Fuchsia 4.1/4.1.1/4.1.2 An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write snapshots. | 5.5 |
| 2022-01-18 | CVE-2021-22566 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Fuchsia An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged context. | 9.8 |