Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2020-03-23 CVE-2020-6427 Out-of-bounds Write vulnerability in multiple products
Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject suse opensuse CWE-787
8.8
2020-03-23 CVE-2020-6424 Use After Free vulnerability in multiple products
Use after free in media in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject suse opensuse CWE-416
8.8
2020-03-23 CVE-2020-6422 Out-of-bounds Write vulnerability in multiple products
Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject debian suse opensuse CWE-787
8.8
2020-03-23 CVE-2020-6420 Insufficient policy enforcement in media in Google Chrome prior to 80.0.3987.132 allowed a remote attacker to bypass same origin policy via a crafted HTML page.
network
low complexity
google debian fedoraproject
8.8
2020-03-15 CVE-2019-9474 Out-of-bounds Read vulnerability in Google Android 10.0
In Bluetooth, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2020-03-15 CVE-2019-9473 Out-of-bounds Read vulnerability in Google Android 10.0
In Bluetooth, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2020-03-15 CVE-2019-2216 Improper Input Validation vulnerability in Google Android 10.0
In overlay notifications, there is a possible hidden notification due to improper input validation.
local
low complexity
google CWE-20
7.3
2020-03-15 CVE-2019-2089 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android 10.0
In app uninstallation, there is a possible set of permissions that may not be removed from a shared app ID.
local
low complexity
google CWE-732
7.8
2020-03-12 CVE-2020-10531 Integer Overflow or Wraparound vulnerability in multiple products
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1.
8.8
2020-03-10 CVE-2020-0085 Missing Authorization vulnerability in Google Android 10.0
In setBluetoothTethering of PanService.java, there is a possible permission bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8