Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-14 | CVE-2023-21273 | Out-of-bounds Write vulnerability in Google Android In SDP_AddAttribute of sdp_db.cc, there is a possible out of bounds write due to an incorrect bounds check. | 8.8 |
| 2023-08-14 | CVE-2023-21275 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In decideCancelProvisioningDialog of AdminIntegratedFlowPrepareActivity.java, there is a possible way to bypass factory reset protections due to a logic error in the code. | 7.8 |
| 2023-08-14 | CVE-2023-21281 | Unspecified vulnerability in Google Android In multiple functions of KeyguardViewMediator.java, there is a possible failure to lock after screen timeout due to a logic error in the code. | 7.8 |
| 2023-08-14 | CVE-2023-21282 | Out-of-bounds Write vulnerability in Google Android In TRANSPOSER_SETTINGS of lpp_tran.h, there is a possible out of bounds write due to an incorrect bounds check. | 8.8 |
| 2023-08-14 | CVE-2023-21286 | Unspecified vulnerability in Google Android In visitUris of RemoteViews.java, there is a possible way to reveal images across users due to a missing permission check. | 7.8 |
| 2023-08-14 | CVE-2023-35689 | Insecure Default Initialization of Resource vulnerability in Google Android 11.0/13.0 In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a possible way to access adb before SUW completion due to an insecure default value. | 7.8 |
| 2023-08-14 | CVE-2023-21265 | Improper Certificate Validation vulnerability in Google Android In multiple locations, there are root CA certificates which need to be disabled. | 7.5 |
| 2023-08-14 | CVE-2023-21269 | Improper Privilege Management vulnerability in Google Android 13.0 In startActivityInner of ActivityStarter.java, there is a possible way to launch an activity into PiP mode from the background due to BAL bypass. | 7.8 |
| 2023-08-07 | CVE-2023-33913 | Out-of-bounds Write vulnerability in Google Android 11.0/12.0 In DRM/oemcrypto, there is a possible out of bounds write due to an incorrect calculation of buffer size.This could lead to remote escalation of privilege with System execution privileges needed | 7.2 |
| 2023-08-03 | CVE-2023-4068 | Type Confusion vulnerability in Google Chrome Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. | 8.1 |