Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-30 | CVE-2022-4188 | Injection vulnerability in Google Chrome Insufficient validation of untrusted input in CORS in Google Chrome on Android prior to 108.0.5359.71 allowed a remote attacker to bypass same origin policy via a crafted HTML page. | 4.3 |
| 2022-11-30 | CVE-2022-4189 | Unspecified vulnerability in Google Chrome Insufficient policy enforcement in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. | 4.3 |
| 2022-11-30 | CVE-2022-4195 | Unspecified vulnerability in Google Chrome Insufficient policy enforcement in Safe Browsing in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to bypass Safe Browsing warnings via a malicious file. | 4.3 |
| 2022-11-17 | CVE-2022-20427 | Out-of-bounds Write vulnerability in Google Android In (TBD) of (TBD), there is a possible way to corrupt memory due to improper input validation. | 6.7 |
| 2022-11-17 | CVE-2022-20428 | Out-of-bounds Write vulnerability in Google Android In (TBD) of (TBD), there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2022-11-17 | CVE-2022-20459 | Improper Input Validation vulnerability in Google Android In (TBD) of (TBD), there is a possible way to redirect code execution due to improper input validation. | 6.7 |
| 2022-11-17 | CVE-2022-20460 | Out-of-bounds Write vulnerability in Google Android In (TBD) mprot_unmap? of (TBD), there is a possible way to corrupt the memory mapping due to improper input validation. | 6.7 |
| 2022-11-09 | CVE-2022-3447 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 106.0.5249.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 4.3 |
| 2022-11-08 | CVE-2022-20414 | Improper Handling of Exceptional Conditions vulnerability in Google Android In setImpl of AlarmManagerService.java, there is a possible way to put a device into a boot loop due to an uncaught exception. | 5.5 |
| 2022-11-08 | CVE-2022-20426 | Improper Check for Unusual or Exceptional Conditions vulnerability in Google Android In multiple functions of many files, there is a possible obstruction of the user's ability to select a phone account due to resource exhaustion. | 5.5 |