Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-11 | CVE-2017-5392 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mozilla Firefox Weak proxy objects have weak references on multiple threads when they should only have them on one, resulting in incorrect memory usage and corruption, which leads to potentially exploitable crashes. | 7.5 |
| 2018-06-11 | CVE-2016-9065 | Improper Input Validation vulnerability in Mozilla Firefox The location bar in Firefox for Android can be spoofed by forcing a user into fullscreen mode, blocking its exiting, and creating of a fake location bar without any user notification. | 5.0 |
| 2018-06-11 | CVE-2016-9062 | Information Exposure vulnerability in Mozilla Firefox Private browsing mode leaves metadata information, such as URLs, for sites visited in "browser.db" and "browser.db-wal" files within the Firefox profile after the mode is exited. | 2.1 |
| 2018-06-11 | CVE-2016-9061 | Permission Issues vulnerability in Mozilla Firefox A previously installed malicious Android application which defines a specific signature-level permissions used by Firefox can access API keys meant for Firefox only. | 5.0 |
| 2018-06-11 | CVE-2016-5299 | Permission Issues vulnerability in Mozilla Firefox A previously installed malicious Android application with same signature-level permissions as Firefox can intercept AuthTokens meant for Firefox only. | 5.0 |
| 2018-06-11 | CVE-2016-5298 | Improper Input Validation vulnerability in Mozilla Firefox A mechanism where disruption of the loading of a new web page can cause the previous page's favicon and SSL indicator to not be reset when the new page is loaded. | 4.3 |
| 2018-06-07 | CVE-2017-6294 | Out-of-bounds Write vulnerability in Google Android In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kernel to the TZ. | 7.2 |
| 2018-06-07 | CVE-2017-6292 | Out-of-bounds Write vulnerability in Google Android In Android before the 2018-06-05 security patch level, NVIDIA TLZ TrustZone contains a possible out of bounds write due to integer overflow which could lead to local escalation of privilege in the TrustZone with no additional execution privileges needed. | 7.2 |
| 2018-06-07 | CVE-2017-6290 | Integer Overflow or Wraparound vulnerability in Google Android In Android before the 2018-06-05 security patch level, NVIDIA TLK TrustZone contains a possible out of bounds write due to an integer overflow which could lead to local escalation of privilege with no additional execution privileges needed. | 7.2 |
| 2018-06-06 | CVE-2018-5850 | Integer Underflow (Wrap or Wraparound) vulnerability in Google Android In the function csr_update_fils_params_rso(), insufficient validation on a key length can result in an integer underflow leading to a buffer overflow in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel. | 9.3 |