Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-11 | CVE-2021-25417 | Unspecified vulnerability in Google Android 10.0/9.0 Improper authorization in SDP SDK prior to SMR JUN-2021 Release 1 allows access to internal storage. | 7.5 |
| 2021-06-08 | CVE-2021-22548 | Unspecified vulnerability in Google Asylo An attacker can change the pointer to untrusted memory to point to trusted memory region which causes copying trusted memory to trusted memory, if the latter is later copied out, it allows for reading of memory regions from the trusted region. | 7.8 |
| 2021-06-08 | CVE-2021-22549 | Exposure of Resource to Wrong Sphere vulnerability in Google Asylo An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. | 7.8 |
| 2021-06-08 | CVE-2021-22550 | Exposure of Resource to Wrong Sphere vulnerability in Google Asylo An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. | 7.8 |
| 2021-06-07 | CVE-2021-30521 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Autofill in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. | 8.8 |
| 2021-06-07 | CVE-2021-30522 | Use After Free vulnerability in multiple products Use after free in WebAudio in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2021-06-07 | CVE-2021-30523 | Use After Free vulnerability in multiple products Use after free in WebRTC in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet. | 8.8 |
| 2021-06-07 | CVE-2021-30524 | Use After Free vulnerability in multiple products Use after free in TabStrip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2021-06-07 | CVE-2021-30525 | Use After Free vulnerability in multiple products Use after free in TabGroups in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2021-06-07 | CVE-2021-30526 | Out-of-bounds Write vulnerability in multiple products Out of bounds write in TabStrip in Google Chrome prior to 91.0.4472.77 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page. | 8.8 |