Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-15 | CVE-2020-8939 | Out-of-bounds Read vulnerability in Google Asylo An out of bounds read on the enc_untrusted_inet_ntop function allows an attack to extend the result size that is used by memcpy() to read memory from within the enclave heap. | 5.5 |
| 2020-12-15 | CVE-2020-8936 | Out-of-bounds Read vulnerability in Google Asylo An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to UntrustedCall. | 5.5 |
| 2020-12-14 | CVE-2020-0019 | Insecure Default Initialization of Resource vulnerability in Google Android In the Broadcom Nexus firmware, there is an insecure default password. | 5.5 |
| 2020-12-14 | CVE-2020-0470 | Out-of-bounds Write vulnerability in Google Android 10.0/11.0 In extend_frame_highbd of restoration.c, there is a possible out of bounds write due to a heap buffer overflow. | 5.5 |
| 2020-12-14 | CVE-2020-0469 | Unspecified vulnerability in Google Android 11.0 In addEscrowToken of LockSettingsService.java, there is a possible loss of the synthetic password due to logic error. | 5.5 |
| 2020-12-14 | CVE-2020-0468 | Missing Authorization vulnerability in Google Android 10.0/11.0 In listen() and related functions of TelephonyRegistry.java, there is a possible permissions bypass of location permissions due to a missing permission check. | 5.5 |
| 2020-12-14 | CVE-2020-0467 | Improper Resource Shutdown or Release vulnerability in Google Android In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. | 5.5 |
| 2020-12-14 | CVE-2020-0465 | Out-of-bounds Write vulnerability in Google Android In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. | 6.8 |
| 2020-12-14 | CVE-2020-0464 | Information Exposure Through Discrepancy vulnerability in Google Android 10.0 In resolv_cache_lookup of res_cache.cpp, there is a possible side channel information disclosure. | 5.5 |
| 2020-12-10 | CVE-2020-26268 | Unspecified vulnerability in Google Tensorflow In affected versions of TensorFlow the tf.raw_ops.ImmutableConst operation returns a constant tensor created from a memory mapped file which is assumed immutable. | 4.4 |