Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-13 | CVE-2020-0018 | Information Exposure Through Log Files vulnerability in Google Android In MotionEntry::appendDescription of InputDispatcher.cpp, there is a possible log information disclosure. | 4.4 |
| 2020-02-13 | CVE-2020-0017 | Unspecified vulnerability in Google Android In multiple places, it was possible for the primary user’s dictionary to be visible to and modifiable by secondary users. | 4.4 |
| 2020-02-13 | CVE-2020-0014 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable. | 5.5 |
| 2020-02-13 | CVE-2020-0005 | Out-of-bounds Write vulnerability in Google Android In btm_read_remote_ext_features_complete of btm_acl.cc, there is a possible out of bounds write due to a missing bounds check. | 6.7 |
| 2020-02-11 | CVE-2020-6412 | Improper Input Validation vulnerability in multiple products Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name. | 5.4 |
| 2020-02-11 | CVE-2020-6411 | Improper Input Validation vulnerability in Google Chrome Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name. | 5.4 |
| 2020-02-11 | CVE-2020-6408 | Insufficient policy enforcement in CORS in Google Chrome prior to 80.0.3987.87 allowed a local attacker to obtain potentially sensitive information via a crafted HTML page. | 6.5 |
| 2020-02-11 | CVE-2020-6405 | Out-of-bounds Read vulnerability in Google Chrome Out of bounds read in SQLite in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. | 6.5 |
| 2020-02-11 | CVE-2020-6403 | Incorrect implementation in Omnibox in Google Chrome on iOS prior to 80.0.3987.87 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | 4.3 |
| 2020-02-11 | CVE-2020-6401 | Improper Input Validation vulnerability in multiple products Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name. | 6.5 |