High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-07-14	CVE-2021-0587	Use After Free vulnerability in Google Android In StreamOut::prepareForWriting of StreamOut.cpp, there is a possible out of bounds write due to a use after free. local low complexity google CWE-416	7.2
2021-07-14	CVE-2021-0589	Out-of-bounds Write vulnerability in Google Android In BTM_TryAllocateSCN of btm_scn.cc, there is a possible out of bounds write due to an incorrect bounds check. local low complexity google CWE-787	7.2
2021-07-14	CVE-2021-0594	Injection vulnerability in Google Android In onCreate of ConfirmConnectActivity, there is a possible remote bypass of user consent due to improper input validation. google CWE-74	7.9
2021-07-14	CVE-2021-0596	Out-of-bounds Read vulnerability in Google Android In phNciNfc_RecvMfResp of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. network low complexity google CWE-125	7.8
2021-07-14	CVE-2021-0602	Information Exposure vulnerability in Google Android 10.0/11.0 In onCreateOptionsMenu of WifiNetworkDetailsFragment.java, there is a possible way for guest users to view and modify Wi-Fi settings for all configured APs due to a permissions bypass. local low complexity google CWE-200	7.2
2021-07-02	CVE-2021-30554	Use After Free vulnerability in multiple products Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2021-07-02	CVE-2021-30555	Use After Free vulnerability in Google Chrome Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and user gesture. network low complexity google CWE-416	8.8
2021-07-02	CVE-2021-30556	Use After Free vulnerability in multiple products Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2021-07-02	CVE-2021-30557	Use After Free vulnerability in multiple products Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject CWE-416	8.8
2021-06-21	CVE-2021-0478	Improper Handling of Exceptional Conditions vulnerability in Google Android In updateDrawable of StatusBarIconView.java, there is a possible permission bypass due to an uncaught exception. local low complexity google CWE-755	7.2