Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2019-07-08 CVE-2019-2112 Use After Free vulnerability in Google Android 8.0/8.1/9.0
In several functions of alarm.cc, there is possible memory corruption due to a use after free.
local
low complexity
google CWE-416
7.8
7.8
2019-07-08 CVE-2019-2109 Out-of-bounds Write vulnerability in Google Android
In MakeMPEG4VideoCodecSpecificData of AVIExtractor.cpp, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
google CWE-787
8.8
8.8
2019-07-08 CVE-2019-2107 Out-of-bounds Write vulnerability in Google Android
In ihevcd_parse_pps of ihevcd_parse_headers.c, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
8.8
2019-07-08 CVE-2019-2106 Out-of-bounds Write vulnerability in Google Android
In ihevcd_sao_shift_ctb of ihevcd_sao.c, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
8.8
2019-07-08 CVE-2019-2105 Use of Uninitialized Resource vulnerability in Google Android
In FileInputStream::Read of file_input_stream.cc, there is a possible memory corruption due to uninitialized data.
network
low complexity
google CWE-908
8.8
8.8
2019-06-27 CVE-2019-5836 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in ANGLE in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google opensuse debian fedoraproject CWE-787
8.8
8.8
2019-06-27 CVE-2019-5831 Out-of-bounds Write vulnerability in multiple products
Object lifecycle issue in V8 in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google opensuse debian fedoraproject CWE-787
8.8
8.8
2019-06-27 CVE-2019-5829 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in download manager in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google opensuse debian fedoraproject CWE-190
8.8
8.8
2019-06-27 CVE-2019-5828 Use After Free vulnerability in multiple products
Object lifecycle issue in ServiceWorker in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google opensuse debian fedoraproject CWE-416
8.8
8.8
2019-06-27 CVE-2019-5827 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. 		8.8
8.8