Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-15 | CVE-2020-8944 | Out-of-bounds Write vulnerability in Google Asylo An arbitrary memory write vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to ecall_restore using the attribute output which fails to check the range of a pointer. | 2.1 |
| 2020-12-14 | CVE-2020-0019 | Use of Hard-coded Credentials vulnerability in Google Android In the Broadcom Nexus firmware, there is an insecure default password. | 2.1 |
| 2020-12-14 | CVE-2020-0459 | Incorrect Default Permissions vulnerability in Google Android In sendConfiguredNetworkChangedBroadcast of WifiConfigManager.java, there is a possible leak of sensitive WiFi configuration data due to a missing permission check. | 2.1 |
| 2020-12-14 | CVE-2020-0464 | Information Exposure Through Discrepancy vulnerability in Google Android 10.0 In resolv_cache_lookup of res_cache.cpp, there is a possible side channel information disclosure. | 2.1 |
| 2020-12-14 | CVE-2020-0467 | Unspecified vulnerability in Google Android In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. | 2.1 |
| 2020-12-14 | CVE-2020-0468 | Incorrect Default Permissions vulnerability in Google Android 10.0/11.0 In listen() and related functions of TelephonyRegistry.java, there is a possible permissions bypass of location permissions due to a missing permission check. | 2.1 |
| 2020-12-14 | CVE-2020-0469 | Unspecified vulnerability in Google Android 11.0 In addEscrowToken of LockSettingsService.java, there is a possible loss of the synthetic password due to logic error. | 2.1 |
| 2020-12-10 | CVE-2020-26268 | Unspecified vulnerability in Google Tensorflow In affected versions of TensorFlow the tf.raw_ops.ImmutableConst operation returns a constant tensor created from a memory mapped file which is assumed immutable. | 3.6 |
| 2020-12-10 | CVE-2020-26270 | Improper Input Validation vulnerability in Google Tensorflow In affected versions of TensorFlow running an LSTM/GRU model where the LSTM/GRU layer receives an input with zero-length results in a CHECK failure when using the CUDA backend. | 2.1 |
| 2020-12-10 | CVE-2020-8908 | Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). | 3.3 |