Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-04-17 CVE-2016-6726 Security vulnerability in Google Android 'Qualcomm' components
Unspecified vulnerability in Qualcomm components in Android on Nexus 6 and Android One devices.
network
low complexity
google
critical
10.0
2017-04-13 CVE-2016-1155 Injection vulnerability in Google Android
HTTP header injection vulnerability in the URLConnection class in Android OS 2.2 through 6.0 allows remote attackers to execute arbitrary scripts or set arbitrary values in cookies.
network
low complexity
google CWE-74
7.5
2017-04-13 CVE-2013-6662 Improper Certificate Validation vulnerability in Google Chrome
Google Chrome caches TLS sessions before certificate validation occurs.
network
google CWE-295
4.3
2017-04-13 CVE-2014-7921 Permissions, Privileges, and Access Controls vulnerability in Google Android
mediaserver in Android 4.0.3 through 5.x before 5.1 allows attackers to gain privileges.
network
low complexity
google CWE-264
critical
9.8
2017-04-13 CVE-2014-7920 Permissions, Privileges, and Access Controls vulnerability in Google Android
mediaserver in Android 2.2 through 5.x before 5.1 allows attackers to gain privileges.
network
low complexity
google CWE-264
critical
9.8
2017-04-12 CVE-2016-5856 Permissions, Privileges, and Access Controls vulnerability in multiple products
Drivers/soc/qcom/spcom.c in the Qualcomm SPCom driver in the Android kernel 2017-03-05 allows local users to gain privileges, a different vulnerability than CVE-2016-5857.
network
high complexity
linux google CWE-264
7.6
2017-04-12 CVE-2017-3064 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability when parsing a shape outline.
9.3
2017-04-12 CVE-2017-3063 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the ActionScript2 NetStream class.
network
low complexity
adobe microsoft apple google linux CWE-416
critical
10.0
2017-04-12 CVE-2017-3062 Use After Free vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in ActionScript2 when creating a getter/setter property.
network
low complexity
adobe microsoft apple google linux CWE-416
critical
10.0
2017-04-12 CVE-2017-3061 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Adobe Flash Player
Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the SWF parser.
network
low complexity
adobe microsoft apple google linux CWE-119
critical
10.0