Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-16 | CVE-2023-7011 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Picture in Picture in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 6.5 |
| 2024-07-16 | CVE-2023-7013 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Chrome Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially spoof security UI via a crafted HTML page. | 4.7 |
| 2024-07-16 | CVE-2024-2884 | Out-of-bounds Read vulnerability in Google Chrome Out of bounds read in V8 in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. | 6.5 |
| 2024-07-16 | CVE-2024-3175 | Unspecified vulnerability in Google Chrome Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to perform privilege escalation via a crafted Chrome Extension. | 6.3 |
| 2024-07-16 | CVE-2024-5500 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Sign-In in Google Chrome prior to 1.3.36.351 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. | 6.5 |
| 2024-07-16 | CVE-2024-6777 | Use After Free vulnerability in Google Chrome Use after free in Navigation in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. | 6.5 |
| 2024-07-09 | CVE-2024-31312 | Incorrect Default Permissions vulnerability in Google Android In multiple locations, there is a possible information leak due to a missing permission check. | 5.5 |
| 2024-07-09 | CVE-2024-31314 | Allocation of Resources Without Limits or Throttling vulnerability in Google Android In multiple functions of ShortcutService.java, there is a possible persistent DOS due to resource exhaustion. | 5.5 |
| 2024-07-09 | CVE-2024-34721 | Unspecified vulnerability in Google Android In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. | 5.5 |
| 2024-07-01 | CVE-2024-39427 | Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0 In trusty service, there is a possible out of bounds write due to a missing bounds check. | 4.4 |