Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-06-06 CVE-2014-9926 Use After Free vulnerability in Google Android
In GNSS in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.
network
google CWE-416
critical
9.3
2017-06-06 CVE-2014-9925 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In HDR in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist.
network
google CWE-119
critical
9.3
2017-06-06 CVE-2014-9924 Numeric Errors vulnerability in Google Android
In 1x in all Android releases from CAF using the Linux kernel, a Signed to Unsigned Conversion Error could potentially occur.
network
google CWE-189
critical
9.3
2017-06-06 CVE-2014-9923 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In NAS in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist.
network
google CWE-119
critical
9.3
2017-05-23 CVE-2016-5178 Improper Input Validation vulnerability in multiple products
Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.143 allow remote attackers to cause a denial of service or possibly have other impact via unknown vectors.
network
low complexity
google opensuse debian redhat fedoraproject CWE-20
critical
9.8
2017-05-23 CVE-2016-5177 Use After Free vulnerability in multiple products
Use-after-free vulnerability in V8 in Google Chrome before 53.0.2785.143 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via unknown vectors.
8.8
2017-05-23 CVE-2015-1529 Integer Overflow or Wraparound vulnerability in Google Android
Integer overflow in soundtrigger/ISoundTriggerHwService.cpp in Android allows attacks to cause a denial of service via unspecified vectors.
network
low complexity
google CWE-190
5.0
2017-05-18 CVE-2017-9045 Missing Encryption of Sensitive Data vulnerability in Google I/O 2017
The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof Feed and Schedule data by creating a modified blocks_v4.json file.
network
google CWE-311
4.3
2017-05-16 CVE-2016-10242 Race Condition vulnerability in Google Android
A time-of-check time-of-use race condition could potentially exist in the secure file system in all Android releases from CAF using the Linux kernel.
network
high complexity
google CWE-362
7.6
2017-05-16 CVE-2016-10239 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur.
network
google CWE-119
critical
9.3