Vulnerabilities > Google > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-13 | CVE-2019-2204 | Out-of-bounds Read vulnerability in Google Android 9.0 In FindSharedFunctionInfo of objects.cc, there is a possible out of bounds read due to a mistake in AST traversal. | 9.8 |
| 2019-11-13 | CVE-2019-2036 | Unspecified vulnerability in Google Android In okToConnect of HidHostService.java, there is a possible permission bypass due to an incorrect state check. | 9.8 |
| 2019-11-07 | CVE-2011-2337 | Incorrect Type Conversion or Cast vulnerability in Google Blink A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms. | 9.8 |
| 2019-11-06 | CVE-2014-3180 | Out-of-bounds Read vulnerability in multiple products In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. | 9.1 |
| 2019-11-05 | CVE-2011-1460 | Incorrect Type Conversion or Cast vulnerability in Google Blink WebKit in Google Chrome before Blink M11 contains a bad cast to RenderBlock when anonymous blocks are renderblocks. | 9.8 |
| 2019-10-25 | CVE-2016-5202 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Chrome browser/extensions/api/dial/dial_registry.cc in Google Chrome before 54.0.2840.98 on macOS, before 54.0.2840.99 on Windows, and before 54.0.2840.100 on Linux neglects to copy a device ID before an erase() call, which causes the erase operation to access data that that erase operation will destroy. | 9.1 |
| 2019-09-27 | CVE-2019-9459 | Out-of-bounds Write vulnerability in Google Android 10.0 In libttspico, there is a possible OOB write due to a heap buffer overflow. | 9.8 |
| 2019-09-27 | CVE-2019-9365 | Deserialization of Untrusted Data vulnerability in Google Android 10.0 In Bluetooth, there is a possible deserialization error due to missing string validation. | 9.8 |
| 2019-09-27 | CVE-2019-9301 | Integer Overflow or Wraparound vulnerability in Google Android 10.0 In libAACdec, there is a possible out of bounds write due to an integer overflow. | 9.8 |
| 2019-08-20 | CVE-2019-5035 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Nest CAM IQ Indoor Firmware 4620002 An exploitable information disclosure vulnerability exists in the Weave PASE pairing functionality of the Nest Cam IQ Indoor, version 4620002. | 9.0 |