Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-15 | CVE-2023-4368 | Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. | 8.8 |
| 2023-08-15 | CVE-2023-4369 | Unspecified vulnerability in Google Chrome Insufficient data validation in Systems Extensions in Google Chrome on ChromeOS prior to 116.0.5845.120 allowed an attacker who convinced a user to install a malicious extension to bypass file restrictions via a crafted HTML page. | 8.8 |
| 2023-08-14 | CVE-2023-21229 | Unspecified vulnerability in Google Android 11.0/13.0 In registerServiceLocked of ManagedServices.java, there is a possible bypass of background activity launch restrictions due to an unsafe PendingIntent. | 7.8 |
| 2023-08-14 | CVE-2023-21231 | Unspecified vulnerability in Google Android 13.0 In getIntentForButton of ButtonManager.java, there is a possible way for an unprivileged application to start a non-exported or permission-protected activity due to a missing permission check. | 7.8 |
| 2023-08-14 | CVE-2023-21233 | Use of Uninitialized Resource vulnerability in Google Android 11.0 In multiple locations of avrc, there is a possible leak of heap data due to uninitialized data. | 7.5 |
| 2023-08-14 | CVE-2023-21235 | Unspecified vulnerability in Google Android 11.0/13.0 In onCreate of LockSettingsActivity.java, there is a possible way set a new lockscreen PIN without entering the existing PIN due to a permissions bypass. | 7.8 |
| 2023-08-14 | CVE-2023-21272 | Improper Input Validation vulnerability in Google Android 11.0/12.0/12.1 In readFrom of Uri.java, there is a possible bad URI permission grant due to improper input validation. | 7.8 |
| 2023-08-14 | CVE-2023-21273 | Out-of-bounds Write vulnerability in Google Android In SDP_AddAttribute of sdp_db.cc, there is a possible out of bounds write due to an incorrect bounds check. | 8.8 |
| 2023-08-14 | CVE-2023-21275 | Unspecified vulnerability in Google Android 12.0/12.1/13.0 In decideCancelProvisioningDialog of AdminIntegratedFlowPrepareActivity.java, there is a possible way to bypass factory reset protections due to a logic error in the code. | 7.8 |
| 2023-08-14 | CVE-2023-21281 | Unspecified vulnerability in Google Android In multiple functions of KeyguardViewMediator.java, there is a possible failure to lock after screen timeout due to a logic error in the code. | 7.8 |