Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-14 | CVE-2020-0459 | Missing Authorization vulnerability in Google Android In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of sensitive WiFi configuration data due to a missing permission check. | 3.3 |
| 2020-12-10 | CVE-2020-26270 | Improper Input Validation vulnerability in Google Tensorflow In affected versions of TensorFlow running an LSTM/GRU model where the LSTM/GRU layer receives an input with zero-length results in a CHECK failure when using the CUDA backend. | 3.3 |
| 2020-12-10 | CVE-2020-8908 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). | 3.3 |
| 2020-12-10 | CVE-2020-26271 | Use of Uninitialized Resource vulnerability in Google Tensorflow In affected versions of TensorFlow under certain cases, loading a saved model can result in accessing uninitialized memory while building the computation graph. | 3.3 |
| 2020-12-10 | CVE-2020-8919 | Incorrect Authorization vulnerability in Google Gerrit An information leak vulnerability exists in Gerrit versions prior to 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where a missing access check on the branch REST API allows an attacker with only the default set of priviledges to read all other user's personal account data as well as sub-trees with restricted access. | 3.5 |
| 2020-12-10 | CVE-2020-8920 | Unspecified vulnerability in Google Gerrit An information leak vulnerability exists in Gerrit versions prior to 2.14.22, 2.15.21, 2.16.25, 3.0.15, 3.1.10, 3.2.5 where an overoptimization with the FilteredRepository wrapper skips the verification of access on All-Users repositories, allowing an attacker to get read access to all users' personal information associated with their accounts. low complexity google | 3.5 |
| 2020-10-14 | CVE-2020-0412 | Missing Authorization vulnerability in Google Android In setProcessMemoryTrimLevel of ActivityManagerService.java, there is a missing permission check. | 3.3 |
| 2020-10-14 | CVE-2020-0422 | Unspecified vulnerability in Google Android In constructImportFailureNotification of NotificationImportExportListener.java, there is a possible permissions bypass due to an unsafe PendingIntent. | 3.3 |
| 2020-09-17 | CVE-2020-0382 | Improper Handling of Exceptional Conditions vulnerability in Google Android 10.0/11.0 In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. | 2.3 |
| 2020-06-04 | CVE-2020-13837 | Missing Authentication for Critical Function vulnerability in Google Android 10.0 An issue was discovered on Samsung mobile devices with Q(10.0) software. | 3.5 |