Vulnerabilities > Google > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-12-05 CVE-2018-9388 Integer Underflow (Wrap or Wraparound) vulnerability in Google Android
In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound writes due to missing bounds checks or integer underflows.
network
low complexity
google CWE-191
critical
9.8
2024-12-02 CVE-2018-9418 Out-of-bounds Write vulnerability in Google Android
In handle_app_cur_val_response of dtif_rc.cc, there is a possible stack buffer overflow due to a missing bounds check.
network
low complexity
google CWE-787
critical
9.8
2024-12-02 CVE-2018-9430 Out-of-bounds Write vulnerability in Google Android
In prop2cfg of btif_storage.cc, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
critical
9.8
2024-11-20 CVE-2018-9478 Out-of-bounds Write vulnerability in Google Android
In process_service_attr_req and process_service_search_attr_req of sdp_server.cc, there is an out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
9.8
2024-11-20 CVE-2018-9479 Out-of-bounds Write vulnerability in Google Android
In process_service_attr_req and process_service_search_attr_req of sdp_server.cc, there is an out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
9.8
2024-11-20 CVE-2018-9467 Unspecified vulnerability in Google Android
In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination.
network
low complexity
google
critical
9.8
2024-11-13 CVE-2024-43091 Integer Overflow or Wraparound vulnerability in Google Android
In filterMask of SkEmbossMaskFilter.cpp, there is a possible out of bounds write due to an integer overflow.
network
low complexity
google CWE-190
critical
9.8
2024-08-21 CVE-2024-7971 Type Confusion vulnerability in Google Chrome
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-843
critical
9.6
2024-07-16 CVE-2019-25154 Unspecified vulnerability in Google Chrome
Inappropriate implementation in iframe in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
network
low complexity
google
critical
9.6
2024-06-13 CVE-2024-29786 Out-of-bounds Write vulnerability in Google Android
In pktproc_fill_data_addr_without_bm of link_rx_pktproc.c, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
9.8