Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-07 | CVE-2017-15835 | Infinite Loop vulnerability in Google Android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, While processing the RIC Data Descriptor IE in an artificially crafted 802.11 frame with IE length more than 255, an infinite loop may potentially occur resulting in a denial of service. | 3.3 |
| 2018-12-06 | CVE-2018-9548 | Missing Authorization vulnerability in Google Android In multiple functions of ContentProvider.java, there is a possible permission bypass due to a missing URI validation. | 2.1 |
| 2018-12-06 | CVE-2018-9554 | Information Exposure vulnerability in Google Android In dumpExtractors of IMediaExtractor.cp, there is a possible disclosure of recently accessed media files due to a permissions bypass. | 2.1 |
| 2018-12-06 | CVE-2018-9566 | Out-of-bounds Read vulnerability in Google Android In process_service_search_rsp of sdp_discovery.c, there is a possible out of bounds read due to a missing bounds check. | 2.9 |
| 2018-11-14 | CVE-2018-9457 | Missing Authorization vulnerability in Google Android 8.0/8.1/9.0 In onCheckedChanged of BluetoothPairingController.java, there is a possible way to retrieve contact information due to a permissions bypass. | 2.1 |
| 2018-11-14 | CVE-2018-9543 | Information Exposure vulnerability in Google Android In trim_device of f2fs_format_utils.c, it is possible that the data partition is not wiped during a factory reset. | 2.1 |
| 2018-11-14 | CVE-2018-9544 | Out-of-bounds Read vulnerability in Google Android 9.0 In register_app of btif_hd.cc, there is a possible out-of-bounds read due to a missing bounds check. | 2.1 |
| 2018-10-29 | CVE-2017-18281 | Out-of-bounds Read vulnerability in Google Android A bool variable in Video function, which gets typecasted to int before being read could result in an out of bound read access in all Android releases from CAF using the linux kernel | 2.1 |
| 2018-09-25 | CVE-2018-6053 | Information Exposure vulnerability in multiple products Inappropriate implementation in New Tab Page in Google Chrome prior to 64.0.3282.119 allowed a local attacker to view website thumbnail images after clearing browser data via a crafted HTML page. | 3.3 |
| 2018-09-19 | CVE-2018-3574 | Improper Input Validation vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, userspace can request ION cache maintenance on a secure ION buffer for which the ION_FLAG_SECURE ion flag is not set and cause the kernel to attempt to perform cache maintenance on memory which does not belong to HLOS. | 2.1 |