Vulnerabilities > Google > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-02-11 | CVE-2020-6380 | Incorrect Authorization vulnerability in multiple products Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension. | 8.8 |
2020-02-11 | CVE-2020-6379 | Use After Free vulnerability in multiple products Use after free in V8 in Google Chrome prior to 79.0.3945.130 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-02-11 | CVE-2020-6378 | Use After Free vulnerability in multiple products Use after free in speech in Google Chrome prior to 79.0.3945.130 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-02-04 | CVE-2019-19273 | Out-of-bounds Write vulnerability in multiple products On Samsung mobile devices with O(8.0) and P(9.0) software and an Exynos 8895 chipset, RKP (aka the Samsung Hypervisor EL2 implementation) allows arbitrary memory write operations. | 7.2 |
2020-01-24 | CVE-2015-1530 | Integer Overflow or Wraparound vulnerability in Google Android media/libmedia/IAudioPolicyService.cpp in Android before 5.1 allows attackers to execute arbitrary code with media_server privileges or cause a denial of service (integer overflow) via a crafted application that provides an invalid array size. | 7.8 |
2020-01-23 | CVE-2013-6792 | Unspecified vulnerability in Google Android Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability | 7.5 |
2020-01-10 | CVE-2020-6377 | Use After Free vulnerability in multiple products Use after free in audio in Google Chrome prior to 79.0.3945.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-01-10 | CVE-2019-13767 | Use After Free vulnerability in multiple products Use after free in media picker in Google Chrome prior to 79.0.3945.88 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
2020-01-08 | CVE-2020-0001 | Improper Privilege Management vulnerability in Google Android In getProcessRecordLocked of ActivityManagerService.java isolated apps are not handled correctly. | 7.2 |
2020-01-06 | CVE-2019-9468 | Double Free vulnerability in Google Android 10.0/11.0/20200601 In export_key_der of export_key.cpp, there is possible memory corruption due to a double free. | 7.2 |