Vulnerabilities > Google > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-20 | CVE-2018-9467 | Unspecified vulnerability in Google Android In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination. | 9.8 |
| 2024-07-16 | CVE-2019-25154 | Unspecified vulnerability in Google Chrome Inappropriate implementation in iframe in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2024-06-13 | CVE-2024-29786 | Out-of-bounds Write vulnerability in Google Android In pktproc_fill_data_addr_without_bm of link_rx_pktproc.c, there is a possible out of bounds write due to a missing bounds check. | 9.8 |
| 2024-06-13 | CVE-2024-32905 | Out-of-bounds Write vulnerability in Google Android In circ_read of link_device_memory_legacy.c, there is a possible out of bounds write due to an incorrect bounds check. | 9.8 |
| 2024-06-13 | CVE-2024-32911 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Android There is a possible escalation of privilege due to improperly used crypto. | 9.8 |
| 2024-06-13 | CVE-2024-32913 | Integer Overflow or Wraparound vulnerability in Google Android In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an integer overflow. | 9.8 |
| 2024-05-14 | CVE-2024-4671 | Use After Free vulnerability in multiple products Use after free in Visuals in Google Chrome prior to 124.0.6367.201 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2024-02-07 | CVE-2024-1283 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Skia in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 9.8 |
| 2024-02-07 | CVE-2024-1284 | Use After Free vulnerability in multiple products Use after free in Mojo in Google Chrome prior to 121.0.6167.160 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 9.8 |
| 2024-02-05 | CVE-2024-20011 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 11.0/12.0/13.0 In alac decoder, there is a possible information disclosure due to an incorrect bounds check. | 9.8 |