Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-05 | CVE-2022-0807 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Autofill in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. | 6.5 |
| 2022-03-30 | CVE-2021-39740 | Improper Input Validation vulnerability in Google Android 12.1 In Messaging, there is a possible way to bypass attachment restrictions due to improper input validation. | 5.5 |
| 2022-03-30 | CVE-2021-39742 | Missing Authorization vulnerability in Google Android 12.1 In Voicemail, there is a possible way to retrieve a trackable identifier due to a missing permission check. | 5.5 |
| 2022-03-30 | CVE-2021-39744 | Information Exposure Through Discrepancy vulnerability in Google Android 12.1 In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2022-03-30 | CVE-2021-39745 | Information Exposure Through Discrepancy vulnerability in Google Android 12.1 In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |
| 2022-03-30 | CVE-2021-39747 | Incorrect Default Permissions vulnerability in Google Android 12.1 In Settings Provider, there is a possible way to list values of non-readable global settings due to a permissions bypass. | 5.5 |
| 2022-03-30 | CVE-2021-39748 | Incorrect Default Permissions vulnerability in Google Android 12.1 In InputMethodEditor, there is a possible way to access some files accessible to Settings due to an unsafe PendingIntent. | 5.5 |
| 2022-03-30 | CVE-2021-39751 | Missing Authorization vulnerability in Google Android 12.1 In Settings, there is a possible way to read Bluetooth device names without proper permissions due to a missing permission check. | 5.5 |
| 2022-03-30 | CVE-2021-39753 | Missing Authorization vulnerability in Google Android 12.1 In DomainVerificationService, there is a possible way to access app domain verification information due to a missing permission check. | 5.5 |
| 2022-03-30 | CVE-2021-39754 | Information Exposure Through Discrepancy vulnerability in Google Android 12.1 In ContextImpl, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. | 5.5 |