Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-07 | CVE-2023-0702 | Type Confusion vulnerability in Google Chrome Type confusion in Data Transfer in Google Chrome prior to 110.0.5481.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-02-07 | CVE-2023-0703 | Type Confusion vulnerability in Google Chrome Type confusion in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via UI interactions. | 8.8 |
| 2023-02-07 | CVE-2023-0705 | Integer Overflow or Wraparound vulnerability in Google Chrome Integer overflow in Core in Google Chrome prior to 110.0.5481.77 allowed a remote attacker who had one a race condition to potentially exploit heap corruption via a crafted HTML page. | 7.5 |
| 2023-01-30 | CVE-2023-0471 | Use After Free vulnerability in Google Chrome Use after free in WebTransport in Google Chrome prior to 109.0.5414.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-01-30 | CVE-2023-0472 | Use After Free vulnerability in Google Chrome Use after free in WebRTC in Google Chrome prior to 109.0.5414.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-01-30 | CVE-2023-0473 | Type Confusion vulnerability in Google Chrome Type Confusion in ServiceWorker API in Google Chrome prior to 109.0.5414.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2023-01-30 | CVE-2023-0474 | Use After Free vulnerability in Google Chrome Use after free in GuestView in Google Chrome prior to 109.0.5414.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a Chrome web app. | 8.8 |
| 2023-01-26 | CVE-2023-20904 | Unspecified vulnerability in Google Android 12.1/13.0 In getTrampolineIntent of SettingsActivity.java, there is a possible launch of arbitrary activity due to an Intent mismatch in the code. | 7.8 |
| 2023-01-26 | CVE-2023-20905 | Out-of-bounds Write vulnerability in Google Android 10.0 In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2023-01-26 | CVE-2023-20912 | Missing Authorization vulnerability in Google Android 13.0 In onActivityResult of AvatarPickerActivity.java, there is a possible way to access images belonging to other users due to a missing permission check. | 7.8 |