Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-06 | CVE-2021-0692 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0/11.0/9.0 In sendBroadcastToInstaller of FirstScreenBroadcast.java, there is a possible activity launch due to an unsafe PendingIntent. | 7.8 |
| 2021-10-04 | CVE-2021-22557 | OS Command Injection vulnerability in Google SLO Generator SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. | 7.8 |
| 2021-09-27 | CVE-2021-23243 | Unspecified vulnerability in Google Android 11.0 In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used. | 7.8 |
| 2021-09-27 | CVE-2021-0610 | Integer Overflow or Wraparound vulnerability in Google Android 10.0/11.0 In memory management driver, there is a possible memory corruption due to an integer overflow. | 7.8 |
| 2021-09-27 | CVE-2021-0611 | Use After Free vulnerability in Google Android 10.0/11.0 In m4u, there is a possible memory corruption due to a use after free. | 7.8 |
| 2021-09-27 | CVE-2021-0612 | Use After Free vulnerability in Google Android 10.0/11.0 In m4u, there is a possible memory corruption due to a use after free. | 7.8 |
| 2021-09-09 | CVE-2021-25461 | Out-of-bounds Write vulnerability in Google Android 8.1 An improper length check in APAService prior to SMR Sep-2021 Release 1 results in stack based Buffer Overflow. | 7.8 |
| 2021-09-08 | CVE-2021-30605 | Improper Authentication vulnerability in Google Chrome OS Readiness Tool 1.0.0.0/1.0.1.0 Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary access controls. | 7.8 |
| 2021-08-26 | CVE-2021-30590 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Bookmarks in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2021-08-26 | CVE-2021-30591 | Use After Free vulnerability in multiple products Use after free in File System API in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |