| 2021-08-03 | CVE-2021-30582 | Inappropriate implementation in Animation in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2021-08-03 | CVE-2021-30583 | Insufficient policy enforcement in image handling in iOS in Google Chrome on iOS prior to 92.0.4515.107 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2021-08-03 | CVE-2021-30584 | Incorrect security UI in Downloads in Google Chrome on Android prior to 92.0.4515.107 allowed a remote attacker to perform domain spoofing via a crafted HTML page. | 6.5 |
| 2021-08-03 | CVE-2021-30587 | Inappropriate implementation in Compositing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 4.3 |
| 2021-08-03 | CVE-2021-30589 | Improper Encoding or Escaping of Output vulnerability in multiple products
Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass navigation restrictions via a crafted click-to-call link. | 4.3 |
| 2021-08-02 | CVE-2021-22552 | Out-of-bounds Read vulnerability in Google Asylo
An untrusted memory read vulnerability in Asylo versions up to 0.6.1 allows an untrusted attacker to pass a syscall number in MessageReader that is then used by sysno() and can bypass validation. | 5.5 |
| 2021-07-14 | CVE-2021-0518 | Missing Authorization vulnerability in Google Android 13.0
In Wi-Fi, there is a possible leak of location-sensitive data due to a missing permission check. | 5.5 |
| 2021-07-14 | CVE-2021-0585 | Out-of-bounds Write vulnerability in Google Android
In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation. | 6.7 |
| 2021-07-14 | CVE-2021-0588 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 8.1/9.0
In processInboundMessage of MceStateMachine.java, there is a possible SMS disclosure due to a missing permission check. | 5.5 |
| 2021-07-14 | CVE-2021-0590 | Unspecified vulnerability in Google Android
In sendNetworkConditionsBroadcast of NetworkMonitor.java, there is a possible way for a privileged app to receive WiFi BSSID and SSID without location permissions due to a missing permission check. | 4.4 |