Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-08 | CVE-2023-40651 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0 In urild service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |
| 2023-10-08 | CVE-2023-40652 | Out-of-bounds Write vulnerability in Google Android 11.0 In jpg driver, there is a possible out of bounds write due to improper input validation. | 4.4 |
| 2023-10-08 | CVE-2023-40653 | Missing Authorization vulnerability in Google Android 11.0 In FW-PackageManager, there is a possible missing permission check. | 6.7 |
| 2023-10-08 | CVE-2023-40654 | Missing Authorization vulnerability in Google Android 11.0 In FW-PackageManager, there is a possible missing permission check. | 6.7 |
| 2023-10-06 | CVE-2023-21244 | Missing Authorization vulnerability in Google Android In visitUris of Notification.java, there is a possible bypass of user profile boundaries due to a missing permission check. | 6.7 |
| 2023-10-06 | CVE-2023-21252 | Unspecified vulnerability in Google Android In validatePassword of WifiConfigurationUtil.java, there is a possible way to get the device into a boot loop due to improper input validation. | 5.5 |
| 2023-10-06 | CVE-2023-21253 | Resource Exhaustion vulnerability in Google Android In multiple locations, there is a possible way to crash multiple system services due to resource exhaustion. | 5.5 |
| 2023-10-06 | CVE-2023-21266 | Unspecified vulnerability in Google Android In multiple functions of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. | 7.8 |
| 2023-10-06 | CVE-2023-21291 | Missing Authorization vulnerability in Google Android In visitUris of Notification.java, there is a possible way to reveal image contents from another user due to a missing permission check. | 5.5 |
| 2023-10-05 | CVE-2023-5346 | Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 117.0.5938.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |