Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-11 | CVE-2022-27822 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0 Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission. | 5.5 |
| 2022-04-11 | CVE-2022-27831 | Out-of-bounds Read vulnerability in Google Android 10.0/11.0/12.0 Improper boundary check in sflvd_rdbuf_bits of libsflvextractor prior to SMR Apr-2022 Release 1 allows attackers to read out of bounds memory. | 4.4 |
| 2022-04-05 | CVE-2022-0455 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Chrome Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 98.0.4758.80 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0461 | Unspecified vulnerability in Google Chrome Policy bypass in COOP in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to bypass iframe sandbox via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0462 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Scroll in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0792 | Out-of-bounds Read vulnerability in Google Chrome Out of bounds read in ANGLE in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0802 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 99.0.4844.51 allowed a remote attacker to hide the contents of the Omnibox (URL bar) via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0803 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Permissions in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to tamper with the contents of the Omnibox (URL bar) via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0804 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Full screen mode in Google Chrome on Android prior to 99.0.4844.51 allowed a remote attacker to hide the contents of the Omnibox (URL bar) via a crafted HTML page. | 6.5 |
| 2022-04-05 | CVE-2022-0806 | Out-of-bounds Read vulnerability in Google Chrome Data leak in Canvas in Google Chrome prior to 99.0.4844.51 allowed a remote attacker who convinced a user to engage in screen sharing to potentially leak cross-origin data via a crafted HTML page. | 6.5 |