Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-11 | CVE-2023-40141 | Out-of-bounds Write vulnerability in Google Android In temp_residency_name_store of thermal_metrics.c, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2023-10-11 | CVE-2023-40142 | Unspecified vulnerability in Google Android In TBD of TBD, there is a possible way to bypass carrier restrictions due to a logic error in the code. | 7.8 |
| 2023-10-08 | CVE-2023-40632 | Use After Free vulnerability in Google Android 13.0 In jpg driver, there is a possible use after free due to a logic error. | 7.5 |
| 2023-10-08 | CVE-2023-40634 | Missing Authorization vulnerability in Google Android 11.0/12.0/13.0 In phasechecksercer, there is a possible missing permission check. | 7.8 |
| 2023-10-08 | CVE-2023-40635 | Missing Authorization vulnerability in Google Android 11.0 In linkturbo, there is a possible missing permission check. | 7.8 |
| 2023-10-06 | CVE-2023-21266 | Unspecified vulnerability in Google Android In multiple functions of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. | 7.8 |
| 2023-10-05 | CVE-2023-5346 | Type Confusion vulnerability in multiple products Type confusion in V8 in Google Chrome prior to 117.0.5938.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-10-02 | CVE-2023-32820 | Reachable Assertion vulnerability in multiple products In wlan firmware, there is a possible firmware assertion due to improper input handling. | 7.5 |
| 2023-09-28 | CVE-2023-5186 | Use After Free vulnerability in multiple products Use after free in Passwords in Google Chrome prior to 117.0.5938.132 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction. | 8.8 |
| 2023-09-28 | CVE-2023-5187 | Use After Free vulnerability in multiple products Use after free in Extensions in Google Chrome prior to 117.0.5938.132 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | 8.8 |