Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-03 | CVE-2021-0356 | Command Injection vulnerability in Google Android 10.0/11.0 In netdiag, there is a possible command injection due to improper input validation. | 6.7 |
| 2021-02-03 | CVE-2021-0355 | Integer Overflow or Wraparound vulnerability in Google Android 11.0 In kisd, there is a possible out of bounds write due to an integer overflow. | 6.7 |
| 2021-02-03 | CVE-2021-0354 | Integer Overflow or Wraparound vulnerability in Google Android In ged, there is a possible out of bounds write due to an integer overflow. | 6.7 |
| 2021-02-03 | CVE-2021-0353 | Out-of-bounds Write vulnerability in Google Android 11.0 In kisd, there is a possible memory corruption due to a heap buffer overflow. | 6.7 |
| 2021-02-03 | CVE-2021-0352 | Type Confusion vulnerability in Google Android 10.0/11.0 In RT regmap driver, there is a possible memory corruption due to type confusion. | 4.4 |
| 2021-01-26 | CVE-2020-27098 | Unspecified vulnerability in Google Android 11.0 In checkGrantUriPermission of UriGrantsManagerService.java, there is a possible way to access contacts due to a permissions bypass. | 5.5 |
| 2021-01-26 | CVE-2020-27097 | Unspecified vulnerability in Google Android 11.0 In checkGrantUriPermission of UriGrantsManagerService.java, there is a possible permissions bypass. | 5.5 |
| 2021-01-21 | CVE-2020-8567 | Path Traversal vulnerability in multiple products Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods. | 6.5 |
| 2021-01-14 | CVE-2020-16046 | Cross-site Scripting vulnerability in Google Chrome Script injection in iOSWeb in Google Chrome on iOS prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code via a crafted HTML page. | 6.1 |
| 2021-01-11 | CVE-2021-0322 | Improper Input Validation vulnerability in Google Android 10.0/11.0/9.0 In onCreate of SlicePermissionActivity.java, there is a possible misleading string displayed due to improper input validation. | 5.0 |