Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2019-06-07 CVE-2019-2098 Missing Authorization vulnerability in Google Android
In areNotificationsEnabledForPackage of NotificationManagerService.java, there is a possible permissions bypass due to a missing permissions check.
local
low complexity
google CWE-862
7.8
7.8
2019-06-07 CVE-2019-2096 Double Free vulnerability in Google Android
In EffectRelease of EffectBundle.cpp, there is a possible memory corruption due to a double free.
local
low complexity
google CWE-415
7.8
7.8
2019-06-07 CVE-2019-2095 Use After Free vulnerability in Google Android 9.0
In callGenIDChangeListeners and related functions of SkPixelRef.cpp, there is a possible use after free due to a race condition.
local
high complexity
google CWE-416
7.0
7.0
2019-06-07 CVE-2019-2094 Out-of-bounds Write vulnerability in Google Android
In parseMPEGCCData of NuPlayerCCDecoder.cpp, there is a possible out of bounds write due to missing bounds checks.
local
low complexity
google CWE-787
7.8
7.8
2019-06-07 CVE-2019-2093 Out-of-bounds Write vulnerability in Google Android 9.0
In huff_dec_1D of nlc_dec.cpp, there is a possible out of bounds write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
8.8
2019-06-07 CVE-2019-2092 Missing Authorization vulnerability in Google Android
In isSeparateProfileChallengeAllowed of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2019-06-07 CVE-2019-2091 Missing Authorization vulnerability in Google Android
In GetPermittedAccessibilityServicesForUser of DevicePolicyManagerService.java, there is a possible permissions bypass due to a missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2019-06-07 CVE-2019-2090 Missing Authorization vulnerability in Google Android
In isPackageDeviceAdminOnAnyUser of PackageManagerService.java, there is a possible permissions bypass due to a missing permissions check.
local
low complexity
google CWE-862
7.8
7.8
2019-05-30 CVE-2018-20840 Improper Check for Unusual or Exceptional Conditions vulnerability in Google API C++ Client 0.1
An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10.
network
low complexity
google CWE-754
8.6
8.6
2019-05-23 CVE-2019-5796 Out-of-bounds Write vulnerability in multiple products
Data race in extensions guest view in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
high complexity
google opensuse CWE-787
7.5
7.5