Vulnerabilities > Google > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-03-11 CVE-2024-0047 Unspecified vulnerability in Google Android 14.0
In writeUserLP of UserManagerService.java, device policies are serialized with an incorrect tag due to a logic error in the code.
local
low complexity
google
5.5
2024-02-21 CVE-2024-1671 Unspecified vulnerability in Google Chrome
Inappropriate implementation in Site Isolation in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google
6.5
2024-02-21 CVE-2024-1672 Inappropriate implementation in Content Security Policy in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to bypass content security policy via a crafted HTML page.
network
low complexity
google fedoraproject
5.4
2024-02-21 CVE-2024-1676 Cross-site Scripting vulnerability in multiple products
Inappropriate implementation in Navigation in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to spoof security UI via a crafted HTML page.
network
low complexity
google fedoraproject CWE-79
5.4
2024-02-16 CVE-2024-0016 Out-of-bounds Read vulnerability in Google Android
In multiple locations, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
5.3
2024-02-16 CVE-2024-0017 Incorrect Authorization vulnerability in Google Android
In shouldUseNoOpLocation of CameraActivity.java, there is a possible confused deputy due to a permissions bypass.
local
low complexity
google CWE-863
5.5
2024-02-16 CVE-2024-0019 Unspecified vulnerability in Google Android
In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings.
local
low complexity
google
5.0
2024-02-16 CVE-2024-0020 Unspecified vulnerability in Google Android
In onActivityResult of NotificationSoundPreference.java, there is a possible way to hear audio files belonging to a different user due to a confused deputy.
local
low complexity
google
5.5
2024-02-16 CVE-2023-40085 Out-of-bounds Read vulnerability in Google Android 12.0/12.1/13.0
In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
5.5
2024-02-16 CVE-2023-40093 Unspecified vulnerability in Google Android
In multiple files, there is a possible way that trimmed content could be included in PDF output due to a logic error in the code.
local
low complexity
google
5.5