Vulnerabilities > Google > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-03-20 | CVE-2024-2625 | Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. | 8.8 |
2024-03-20 | CVE-2024-2627 | Use After Free vulnerability in multiple products Use after free in Canvas in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2024-02-07 | CVE-2024-22012 | Out-of-bounds Write vulnerability in Google Android there is a possible out of bounds write due to a missing bounds check. | 7.8 |
2024-02-05 | CVE-2024-20007 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In mp3 decoder, there is a possible out of bounds write due to a race condition. | 7.5 |
2024-02-05 | CVE-2024-20009 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In alac decoder, there is a possible out of bounds write due to an incorrect error handling. | 8.8 |
2024-02-05 | CVE-2024-20015 | Unspecified vulnerability in Google Android 12.0/13.0/14.0 In telephony, there is a possible escalation of privilege due to a permissions bypass. | 7.8 |
2024-01-30 | CVE-2024-1059 | Use After Free vulnerability in multiple products Use after free in Peer Connection in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. | 8.8 |
2024-01-30 | CVE-2024-1060 | Use After Free vulnerability in multiple products Use after free in Canvas in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2024-01-30 | CVE-2024-1077 | Use After Free vulnerability in multiple products Use after free in Network in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially exploit heap corruption via a malicious file. | 8.8 |
2024-01-24 | CVE-2024-0804 | Insufficient policy enforcement in iOS Security UI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 7.5 |