Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-16 | CVE-2022-42527 | Unspecified vulnerability in Google Android In cd_SsParseMsg of cd_SsCodec.c, there is a possible crash due to a missing null check. | 7.5 |
| 2022-12-16 | CVE-2022-42531 | Allocation of Resources Without Limits or Throttling vulnerability in Google Android In mmu_map_for_fw of gs_ldfw_load.c, there is a possible mitigation bypass due to Permissive Memory Allocation. | 7.8 |
| 2022-12-16 | CVE-2022-42534 | Improper Input Validation vulnerability in Google Android In trusty_ffa_mem_reclaim of shared-mem-smcall.c, there is a possible privilege escalation due to improper input validation. | 7.8 |
| 2022-12-16 | CVE-2022-42544 | Injection vulnerability in Google Android 13.0 In getView of AddAppNetworksFragment.java, there is a possible way to mislead the user about network add requests due to improper input validation. | 7.8 |
| 2022-12-14 | CVE-2022-4436 | Use After Free vulnerability in Google Chrome Use after free in Blink Media in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2022-12-14 | CVE-2022-4437 | Use After Free vulnerability in Google Chrome Use after free in Mojo IPC in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2022-12-14 | CVE-2022-4438 | Use After Free vulnerability in Google Chrome Use after free in Blink Frames in Google Chrome prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2022-12-14 | CVE-2022-4439 | Use After Free vulnerability in Google Chrome Use after free in Aura in Google Chrome on Windows prior to 108.0.5359.124 allowed a remote attacker who convinced the user to engage in specific UI interactions to potentially exploit heap corruption via specific UI interactions. | 8.8 |
| 2022-12-14 | CVE-2022-4440 | Use After Free vulnerability in Google Chrome Use after free in Profiles in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2022-12-13 | CVE-2021-39660 | Race Condition vulnerability in Google Android In TBD of TBD, there is a possible way to archive arbitrary code execution in kernel due to a race condition. | 7.0 |