Vulnerabilities > Google > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-07 | CVE-2011-2337 | Incorrect Type Conversion or Cast vulnerability in Google Blink A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms. | 9.8 |
| 2019-11-06 | CVE-2014-3180 | Out-of-bounds Read vulnerability in multiple products In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. | 9.1 |
| 2019-11-05 | CVE-2011-1460 | Incorrect Type Conversion or Cast vulnerability in Google Blink WebKit in Google Chrome before Blink M11 contains a bad cast to RenderBlock when anonymous blocks are renderblocks. | 9.8 |
| 2019-10-25 | CVE-2016-5202 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Chrome browser/extensions/api/dial/dial_registry.cc in Google Chrome before 54.0.2840.98 on macOS, before 54.0.2840.99 on Windows, and before 54.0.2840.100 on Linux neglects to copy a device ID before an erase() call, which causes the erase operation to access data that that erase operation will destroy. | 9.1 |
| 2019-09-27 | CVE-2019-9459 | Out-of-bounds Write vulnerability in Google Android 10.0 In libttspico, there is a possible OOB write due to a heap buffer overflow. | 9.8 |
| 2019-09-27 | CVE-2019-9365 | Deserialization of Untrusted Data vulnerability in Google Android 10.0 In Bluetooth, there is a possible deserialization error due to missing string validation. | 9.8 |
| 2019-09-27 | CVE-2019-9301 | Integer Overflow or Wraparound vulnerability in Google Android 10.0 In libAACdec, there is a possible out of bounds write due to an integer overflow. | 9.8 |
| 2019-08-20 | CVE-2019-5035 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Nest CAM IQ Indoor Firmware 4620002 An exploitable information disclosure vulnerability exists in the Weave PASE pairing functionality of the Nest Cam IQ Indoor, version 4620002. | 9.0 |
| 2019-08-20 | CVE-2019-2130 | Type Confusion vulnerability in Google Android In CompilationJob::FinalizeJob of compiler.cc, there is a possible remote code execution due to type confusion. | 9.8 |
| 2019-07-23 | CVE-2019-1010200 | OS Command Injection vulnerability in Google Voice Builder Voice Builder Prior to commit c145d4604df67e6fc625992412eef0bf9a85e26b and f6660e6d8f0d1d931359d591dbdec580fef36d36 is affected by: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'). | 9.8 |