Vulnerabilities > Google > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-05-03 CVE-2023-2466 Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to spoof the contents of the security UI via a crafted HTML page.
network
low complexity
google fedoraproject debian
4.3
4.3
2023-05-03 CVE-2023-2467 Inappropriate implementation in Prompts in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to bypass permissions restrictions via a crafted HTML page.
network
low complexity
google fedoraproject debian
4.3
4.3
2023-05-03 CVE-2023-2468 Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page.
network
low complexity
google fedoraproject debian
4.3
4.3
2023-04-19 CVE-2023-20909 Unspecified vulnerability in Google Android
In multiple functions of RunningTasks.java, there is a possible privilege escalation due to a missing privilege check.
local
low complexity
google
5.5
5.5
2023-04-19 CVE-2023-20935 Out-of-bounds Read vulnerability in Google Android
In deserialize of multiple files, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
5.5
2023-04-19 CVE-2023-20941 Out-of-bounds Write vulnerability in Google Android
In acc_ctrlrequest_composite of f_accessory.c, there is a possible out of bounds write due to a missing bounds check.
low complexity
google CWE-787
6.6
6.6
2023-04-19 CVE-2023-21080 Out-of-bounds Read vulnerability in Google Android
In register_notification_rsp of btif_rc.cc, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
5.5
2023-04-19 CVE-2023-21082 Unspecified vulnerability in Google Android
In getNumberFromCallIntent of NewOutgoingCallIntentBroadcaster.java, there is a possible way to enumerate other user's contact phone number due to a confused deputy.
local
low complexity
google
5.5
5.5
2023-04-19 CVE-2023-21084 Unspecified vulnerability in Google Android 13.0
In buildPropFile of filesystem.go, there is a possible insecure hash due to an improperly used crypto.
local
low complexity
google
6.7
6.7
2023-04-19 CVE-2023-21087 Unspecified vulnerability in Google Android
In PreferencesHelper.java, an uncaught exception may cause the device to get stuck in a boot loop.
local
low complexity
google
5.5
5.5