Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-11 | CVE-2021-0321 | Information Exposure Through Discrepancy vulnerability in Google Android 11.0 In enforceDumpPermissionForPackage of ActivityManagerService.java, there is a possible way to determine if a package is installed due to side channel information disclosure. | 5.5 |
| 2021-01-11 | CVE-2021-0320 | Race Condition vulnerability in Google Android 10.0/11.0 In is_device_locked and set_device_locked of keystore_keymaster_enforcement.h, there is a possible bypass of lockscreen requirements for keyguard bound keys due to a race condition. | 4.7 |
| 2021-01-11 | CVE-2021-0312 | Integer Overflow or Wraparound vulnerability in Google Android In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. | 6.5 |
| 2021-01-11 | CVE-2021-0311 | Out-of-bounds Write vulnerability in Google Android In ElementaryStreamQueue::dequeueAccessUnitH264() of ESQueue.cpp, there is a possible out of bounds write due to a missing bounds check. | 6.5 |
| 2021-01-11 | CVE-2021-0309 | Unspecified vulnerability in Google Android In onCreate of grantCredentialsPermissionActivity, there is a confused deputy. | 5.5 |
| 2021-01-11 | CVE-2021-0308 | Out-of-bounds Write vulnerability in multiple products In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. | 6.8 |
| 2021-01-11 | CVE-2021-0304 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android In several functions of GlobalScreenshot.java, there is a possible permission bypass due to an unsafe PendingIntent. | 5.5 |
| 2021-01-11 | CVE-2021-0301 | Out-of-bounds Write vulnerability in Google Android In ged, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2021-01-11 | CVE-2021-0342 | Use After Free vulnerability in Google Android In tun_get_user of tun.c, there is possible memory corruption due to a use after free. | 6.7 |
| 2021-01-08 | CVE-2020-16042 | Use of Uninitialized Resource vulnerability in Google Chrome Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. | 6.5 |