Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-21 | CVE-2020-6473 | Information Exposure Through Discrepancy vulnerability in multiple products Insufficient policy enforcement in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. | 6.5 |
| 2020-05-21 | CVE-2020-6472 | Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory or disk via a crafted Chrome Extension. | 6.5 |
| 2020-05-21 | CVE-2020-6470 | Cross-site Scripting vulnerability in multiple products Insufficient validation of untrusted input in clipboard in Google Chrome prior to 83.0.4103.61 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via crafted clipboard contents. | 6.1 |
| 2020-05-21 | CVE-2020-6460 | Insufficient data validation in URL formatting in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to perform domain spoofing via a crafted domain name. | 6.5 |
| 2020-05-14 | CVE-2020-0220 | Out-of-bounds Write vulnerability in Google Android In crus_afe_callback of msm-cirrus-playback.c, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2020-05-14 | CVE-2020-0106 | Missing Authorization vulnerability in Google Android 10.0 In getCellLocation of PhoneInterfaceManager.java, there is a possible permission bypass due to a missing SDK version check. | 5.5 |
| 2020-05-14 | CVE-2020-0104 | Unspecified vulnerability in Google Android 10.0/9.0 In onShowingStateChanged of KeyguardStateMonitor.java, there is a possible inappropriate read due to a logic error. | 5.5 |
| 2020-05-14 | CVE-2020-0101 | Missing Initialization of Resource vulnerability in Google Android In BnCrypto::onTransact of ICrypto.cpp, there is a possible information disclosure due to uninitialized data. | 5.5 |
| 2020-05-14 | CVE-2020-0100 | Out-of-bounds Read vulnerability in Google Android 8.0/8.1 In onTransact of IHDCP.cpp, there is a possible out of bounds read due to incorrect error handling. | 5.5 |
| 2020-05-14 | CVE-2020-0093 | Out-of-bounds Read vulnerability in multiple products In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. | 5.0 |