Vulnerabilities > Google > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-10-22 CVE-2021-0870 Race Condition vulnerability in Google Android
In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition.
network
google CWE-362
critical
9.3
2021-07-14 CVE-2021-0592 Out-of-bounds Write vulnerability in Google Android
In various functions in WideVine, there are possible out of bounds writes due to improper input validation.
network
google CWE-787
critical
9.3
2021-07-14 CVE-2021-0515 Out-of-bounds Write vulnerability in Google Android
In Factory::CreateStrictFunctionMap of factory.cc, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
critical
10.0
2021-07-14 CVE-2021-0514 Race Condition vulnerability in Google Android
In several functions of the V8 library, there is a possible use after free due to a race condition.
network
google CWE-362
critical
9.3
2021-06-14 CVE-2021-0324 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android SoCAndroid ID: A-175402462
network
low complexity
google
critical
10.0
2021-06-11 CVE-2021-0481 Improper Privilege Management vulnerability in Google Android
In onActivityResult of EditUserPhotoController.java, there is a possible access of unauthorized files due to an unexpected URI handler.
network
google CWE-269
critical
9.3
2021-06-11 CVE-2021-0474 Out-of-bounds Write vulnerability in Google Android
In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds write due to a heap buffer overflow.
network
low complexity
google CWE-787
critical
10.0
2021-04-13 CVE-2021-0430 Out-of-bounds Write vulnerability in Google Android 10.0/11.0
In rw_mfc_handle_read_op of rw_mfc.cc, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
critical
10.0
2021-02-10 CVE-2021-0302 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/8.1/9.0
In PackageInstaller, there is a possible tapjacking attack due to an insecure default value.
network
google CWE-1021
critical
9.3
2021-02-10 CVE-2021-0305 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 10.0/8.1/9.0
In PackageInstaller, there is a possible tapjacking attack due to an insecure default value.
network
google CWE-1021
critical
9.3