Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2020-05-21 CVE-2020-6467 Use After Free vulnerability in multiple products
Use after free in WebRTC in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian opensuse fedoraproject CWE-416
8.8
8.8
2020-05-21 CVE-2020-6464 Type Confusion vulnerability in multiple products
Type confusion in Blink in Google Chrome prior to 81.0.4044.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian opensuse CWE-843
8.8
8.8
2020-05-21 CVE-2020-6463 Use After Free vulnerability in multiple products
Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. 		8.8
8.8
2020-05-21 CVE-2020-6459 Use After Free vulnerability in multiple products
Use after free in payments in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian CWE-416
8.8
8.8
2020-05-21 CVE-2020-6458 Out-of-bounds Write vulnerability in multiple products
Out of bounds read and write in PDFium in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.
network
low complexity
google debian CWE-787
8.8
8.8
2020-05-14 CVE-2020-0110 Out-of-bounds Write vulnerability in multiple products
In psi_write of psi.c, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google intel CWE-787
7.8
7.8
2020-05-14 CVE-2020-0109 Missing Authorization vulnerability in Google Android 10.0/9.0
In simulatePackageSuspendBroadcast of NotificationManagerService.java, there is a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2020-05-14 CVE-2020-0105 Missing Authorization vulnerability in Google Android 10.0/9.0
In onKeyguardVisibilityChanged of key_store_service.cpp, there is a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2020-05-14 CVE-2020-0102 Out-of-bounds Write vulnerability in Google Android
In GattServer::SendResponse of gatt_server.cc, there is a possible out of bounds write due to an incorrect bounds check.
local
low complexity
google CWE-787
7.8
7.8
2020-05-14 CVE-2020-0098 Unspecified vulnerability in Google Android
In navigateUpToLocked of ActivityStack.java, there is a possible permission bypass due to a confused deputy.
local
low complexity
google
7.8
7.8