Vulnerabilities > Google > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-12-10 CVE-2020-26266 Use of Uninitialized Resource vulnerability in Google Tensorflow
In affected versions of TensorFlow under certain cases a saved model can trigger use of uninitialized values during code execution.
local
low complexity
google CWE-908
5.3
5.3
2020-11-16 CVE-2020-7765 Unspecified vulnerability in Google Firebase/Util
This affects the package @firebase/util before 0.3.4.
network
low complexity
google
5.3
5.3
2020-11-10 CVE-2020-0454 Missing Authorization vulnerability in Google Android 9.0
In callCallbackForRequest of ConnectivityService.java, there is a possible permission bypass due to a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2020-11-10 CVE-2020-0453 Unspecified vulnerability in Google Android 8.0/8.1/9.0
In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to an unsafe PendingIntent.
local
low complexity
google
5.5
5.5
2020-11-10 CVE-2020-0450 Improper Initialization vulnerability in Google Android
In rw_i93_sm_format of rw_i93.cc, there is a possible out of bounds read due to uninitialized data.
network
low complexity
google CWE-665
6.5
6.5
2020-11-10 CVE-2020-0448 Missing Authorization vulnerability in Google Android
In getPhoneAccountsForPackage of TelecomServiceImpl.java, there is a possible way to access a tracking identifier due to a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2020-11-10 CVE-2020-0443 Improper Handling of Exceptional Conditions vulnerability in Google Android
In LocaleList of LocaleList.java, there is a possible forced reboot due to an uncaught exception.
local
low complexity
google CWE-755
5.5
5.5
2020-11-10 CVE-2020-0437 Missing Authorization vulnerability in Google Android
In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check.
local
low complexity
google CWE-862
5.5
5.5
2020-11-10 CVE-2020-0424 Out-of-bounds Read vulnerability in Google Android 10.0/11.0/9.0
In send_vc of res_send.cpp, there is a possible out of bounds read due to an incorrect bounds check.
local
low complexity
google CWE-125
5.5
5.5
2020-11-03 CVE-2020-6557 Inappropriate implementation in networking in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
network
low complexity
google debian fedoraproject opensuse
6.5
6.5