Vulnerabilities > Google > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-10 | CVE-2022-20361 | Unspecified vulnerability in Google Android In btif_dm_auth_cmpl_evt of btif_dm.cc, there is a possible vulnerability in Cross-Transport Key Derivation due to Weakness in Bluetooth Standard. | 9.8 |
| 2022-08-05 | CVE-2022-33719 | Integer Overflow or Wraparound vulnerability in Google Android 10.0/11.0/12.0 Improper input validation in baseband prior to SMR Aug-2022 Release 1 allows attackers to cause integer overflow to heap overflow. | 9.8 |
| 2022-07-29 | CVE-2022-1799 | Unspecified vulnerability in Google Play Services Software Development KIT Incorrect signature trust exists within Google Play services SDK play-services-basement. | 9.8 |
| 2022-07-28 | CVE-2022-2010 | Out-of-bounds Read vulnerability in multiple products Out of bounds read in compositing in Google Chrome prior to 102.0.5005.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. | 9.3 |
| 2022-07-27 | CVE-2022-1853 | Use After Free vulnerability in Google Chrome Use after free in Indexed DB in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2022-07-25 | CVE-2022-1309 | Incorrect Authorization vulnerability in Google Chrome Insufficient policy enforcement in developer tools in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2022-07-25 | CVE-2022-1312 | Use After Free vulnerability in Google Chrome Use after free in storage in Google Chrome prior to 100.0.4896.88 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. | 9.6 |
| 2022-07-21 | CVE-2022-0973 | Use After Free vulnerability in Google Chrome Use after free in Safe Browsing in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 9.6 |
| 2022-07-21 | CVE-2022-0977 | Use After Free vulnerability in Google Chrome Use after free in Browser UI in Google Chrome on Chrome OS prior to 99.0.4844.74 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. | 9.6 |
| 2022-07-13 | CVE-2022-20216 | Unspecified vulnerability in Google Android android exported is used to set third-party app access permissions, and the default value of intent-filter is true. | 9.8 |