Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-24 CVE-2023-21053 Out-of-bounds Read vulnerability in Google Android
In sms_ExtractCbLanguage of sms_CellBroadcast.c, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2023-03-24 CVE-2023-21054 Out-of-bounds Write vulnerability in Google Android
In EUTRAN_LCS_ConvertLCS_MOLRReq of LPP_CommonUtil.c, there is a possible out of bounds write due to a logic error in the code.
network
low complexity
google CWE-787
7.2
2023-03-24 CVE-2023-21059 Out-of-bounds Read vulnerability in Google Android
In EUTRAN_LCS_DecodeFacilityInformationElement of LPP_LcsManagement.c, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2023-03-24 CVE-2023-21060 Out-of-bounds Read vulnerability in Google Android
In sms_GetTpPiIe of sms_PduCodec.c, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2023-03-24 CVE-2023-21061 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-229255400References: N/A
network
low complexity
google
7.5
2023-03-24 CVE-2023-21067 Unspecified vulnerability in Google Android
Product: AndroidVersions: Android kernelAndroid ID: A-254114726References: N/A
network
low complexity
google
7.5
2023-03-24 CVE-2023-21068 Unspecified vulnerability in Google Android
In (TBD) of (TBD), there is a possible way to boot with a hidden debug policy due to a missing warning to the user.
local
low complexity
google
7.8
2023-03-21 CVE-2023-1528 Use After Free vulnerability in multiple products
Use after free in Passwords in Google Chrome prior to 111.0.5563.110 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
2023-03-21 CVE-2023-1530 Use After Free vulnerability in multiple products
Use after free in PDF in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-416
8.8
2023-03-21 CVE-2023-1531 Use After Free vulnerability in multiple products
Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject chromium CWE-416
8.8