Vulnerabilities > Google > Low

DATE CVE VULNERABILITY TITLE RISK
2019-09-27 CVE-2019-9377 Missing Authorization vulnerability in Google Android 10.0
In FingerprintService, there is a possible bypass for operating system protections that isolate user profiles from each other due to a missing permission check.
local
low complexity
google CWE-862
3.3
3.3
2019-09-27 CVE-2019-9438 Unspecified vulnerability in Google Android 10.0
In the Package Manager service, there is a possible information disclosure due to a confused deputy.
local
low complexity
google
3.3
3.3
2019-09-27 CVE-2019-9440 Unspecified vulnerability in Google Android 10.0
In AOSP Email, there is a possible information disclosure due to a confused deputy.
local
low complexity
google
3.3
3.3
2019-09-06 CVE-2019-9455 Reachable Assertion vulnerability in multiple products
In the Android kernel in the video driver there is a kernel pointer leak due to a WARN_ON statement.
local
low complexity
google opensuse CWE-617
2.3
2.3
2018-09-25 CVE-2018-6053 Information Exposure vulnerability in multiple products
Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page.
local
low complexity
google redhat debian CWE-200
3.3
3.3
2018-05-10 CVE-2018-6254 Out-of-bounds Read vulnerability in Google Android
In Android before the 2018-05-05 security patch level, NVIDIA Media Server contains an out-of-bounds read (due to improper input validation) vulnerability which could lead to local information disclosure.
local
low complexity
google CWE-125
3.3
3.3
2018-04-04 CVE-2016-10236 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the Qualcomm USB driver.
local
low complexity
google CWE-200
3.3
3.3
2018-04-04 CVE-2017-6425 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the Qualcomm video driver.
local
low complexity
google CWE-200
3.3
3.3
2018-04-04 CVE-2017-6426 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the Qualcomm SPMI driver.
local
low complexity
google CWE-200
3.3
3.3
2017-10-27 CVE-2017-5081 Improper Input Validation vulnerability in multiple products
Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed an attacker with local write access to modify extensions by modifying extension files.
local
low complexity
google debian redhat CWE-20
3.3
3.3