Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2021-08-03 CVE-2021-30578 Use of Uninitialized Resource vulnerability in multiple products
Uninitialized use in Media in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page.
network
low complexity
google fedoraproject CWE-908
8.8
8.8
2021-08-03 CVE-2021-30579 Use After Free vulnerability in multiple products
Use after free in UI framework in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2021-08-03 CVE-2021-30581 Use After Free vulnerability in multiple products
Use after free in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2021-08-03 CVE-2021-30585 Use After Free vulnerability in multiple products
Use after free in sensor handling in Google Chrome on Windows prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2021-08-03 CVE-2021-30586 Use After Free vulnerability in multiple products
Use after free in dialog box handling in Windows in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
8.8
2021-08-03 CVE-2021-30588 Type Confusion vulnerability in multiple products
Type confusion in V8 in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-843
8.8
8.8
2021-08-03 CVE-2021-30560 Use After Free vulnerability in multiple products
Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google xmlsoft debian splunk CWE-416
8.8
8.8
2021-07-14 CVE-2020-0417 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0/8.1/9.0
In setNiNotification of GpsNetInitiatedHandler.java, there is a possible permissions bypass due to an empty mutable PendingIntent.
local
low complexity
google CWE-732
7.2
7.2
2021-07-14 CVE-2021-0577 Out-of-bounds Write vulnerability in Google Android
In flv extractor, there is a possible out of bounds write due to a heap buffer overflow.
local
low complexity
google CWE-787
7.2
7.2
2021-07-14 CVE-2021-0585 Out-of-bounds Write vulnerability in Google Android
In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation.
local
low complexity
google CWE-787
7.2
7.2