Vulnerabilities > Google > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-13 | CVE-2021-0430 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0 In rw_mfc_handle_read_op of rw_mfc.cc, there is a possible out of bounds write due to a missing bounds check. | 9.8 |
| 2021-04-09 | CVE-2021-25360 | Out-of-bounds Write vulnerability in Google Android 10.0 An improper input validation vulnerability in libswmfextractor library prior to SMR APR-2021 Release 1 allows attackers to execute arbitrary code on mediaextractor process. | 9.8 |
| 2021-03-10 | CVE-2021-0397 | Double Free vulnerability in Google Android In sdp_copy_raw_data of sdp_discovery.cc, there is a possible system compromise due to a double free. | 9.8 |
| 2021-03-10 | CVE-2021-0396 | Out-of-bounds Write vulnerability in Google Android In Builtins::Generate_ArgumentsAdaptorTrampoline of builtins-arm.cc and related files, there is a possible out of bounds write due to an incorrect bounds check. | 9.8 |
| 2021-03-04 | CVE-2021-25346 | Out-of-bounds Write vulnerability in Google Android A possible arbitrary memory overwrite vulnerabilities in quram library version prior to SMR Jan-2021 Release 1 allow arbitrary code execution. | 9.8 |
| 2021-02-22 | CVE-2021-21155 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Tab Strip in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2021-02-22 | CVE-2021-21154 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Tab Strip in Google Chrome prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2021-02-22 | CVE-2021-21151 | Use After Free vulnerability in multiple products Use after free in Payments in Google Chrome prior to 88.0.4324.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2021-02-22 | CVE-2021-21150 | Use After Free vulnerability in multiple products Use after free in Downloads in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |
| 2021-02-09 | CVE-2021-21146 | Use After Free vulnerability in multiple products Use after free in Navigation in Google Chrome prior to 88.0.4324.146 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. | 9.6 |