Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-04 CVE-2023-42743 Missing Authorization vulnerability in Google Android 11.0/12.0/13.0
In telecom service, there is a possible missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2023-12-04 CVE-2023-42745 Missing Authorization vulnerability in Google Android 11.0/12.0/13.0
In telecom service, there is a possible missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2023-12-04 CVE-2023-42746 Missing Authorization vulnerability in Google Android 11.0/12.0/13.0
In power manager, there is a possible missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2023-12-04 CVE-2023-42747 Missing Authorization vulnerability in Google Android 11.0/12.0/13.0
In camera service, there is a possible missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2023-12-04 CVE-2023-42748 Missing Authorization vulnerability in Google Android 11.0/12.0/13.0
In telecom service, there is a possible missing permission check.
local
low complexity
google CWE-862
7.8
7.8
2023-11-29 CVE-2022-42539 Unspecified vulnerability in Google Android
Information disclosure
network
low complexity
google
7.5
7.5
2023-11-29 CVE-2023-6346 Use After Free vulnerability in multiple products
Use after free in WebAudio in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject CWE-416
8.8
8.8
2023-11-29 CVE-2023-6347 Use After Free vulnerability in multiple products
Use after free in Mojo in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject CWE-416
8.8
8.8
2023-11-29 CVE-2023-6348 Type Confusion vulnerability in multiple products
Type Confusion in Spellcheck in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject CWE-843
8.8
8.8
2023-11-29 CVE-2023-6350 Use After Free vulnerability in multiple products
Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file.
network
low complexity
google debian fedoraproject CWE-416
8.8
8.8