Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-25 CVE-2024-47022 Unspecified vulnerability in Google Android
Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656.
network
low complexity
google
7.5
7.5
2024-10-25 CVE-2024-47023 Unspecified vulnerability in Google Android
there is a possible man-in-the-middle attack due to a logic error in the code.
network
high complexity
google
8.1
8.1
2024-10-25 CVE-2024-47024 Integer Overflow or Wraparound vulnerability in Google Android
In vring_size of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
7.8
2024-10-25 CVE-2024-47027 Unspecified vulnerability in Google Android
In sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical memory access due to improper input validation.
local
low complexity
google
7.8
7.8
2024-10-25 CVE-2024-47033 Use After Free vulnerability in Google Android
In lwis_allocator_free of lwis_allocator.c, there is a possible memory corruption due to a use after free.
local
low complexity
google CWE-416
7.8
7.8
2024-10-25 CVE-2024-47035 Out-of-bounds Write vulnerability in Google Android
In vring_init of external/headers/include/virtio/virtio_ring.h, there is a possible out of bounds write due to a logic error in the code.
local
low complexity
google CWE-787
7.8
7.8
2024-10-25 CVE-2024-47041 Out-of-bounds Read vulnerability in Google Android
In valid_address of syscall.c, there is a possible out of bounds read due to an incorrect bounds check.
local
low complexity
google CWE-125
7.8
7.8
2024-10-22 CVE-2024-10229 Unspecified vulnerability in Google Chrome
Inappropriate implementation in Extensions in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension.
network
low complexity
google
8.1
8.1
2024-10-22 CVE-2024-10230 Type Confusion vulnerability in Google Chrome
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-843
8.8
8.8
2024-10-22 CVE-2024-10231 Type Confusion vulnerability in Google Chrome
Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google CWE-843
8.8
8.8