Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-24 | CVE-2015-1525 | Improper Input Validation vulnerability in Google Android audio/AudioPolicyManagerBase.cpp in Android before 5.1 allows attackers to cause a denial of service (audio_policy application outage) via a crafted application that provides a NULL device address. | 5.5 |
| 2020-01-14 | CVE-2019-13722 | Out-of-bounds Write vulnerability in Google Chrome Inappropriate implementation in WebRTC in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 6.5 |
| 2020-01-08 | CVE-2020-0008 | Out-of-bounds Read vulnerability in Google Android In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. | 4.7 |
| 2020-01-08 | CVE-2020-0007 | Use of Uninitialized Resource vulnerability in Google Android In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. | 5.5 |
| 2020-01-08 | CVE-2020-0006 | Use of Uninitialized Resource vulnerability in Google Android In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. | 6.5 |
| 2020-01-08 | CVE-2020-0004 | Improper Handling of Exceptional Conditions vulnerability in Google Android In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. | 5.5 |
| 2020-01-08 | CVE-2020-0003 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Google Android 8.0 In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability. | 6.7 |
| 2020-01-08 | CVE-2016-5346 | Information Exposure vulnerability in Google Android An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_MSM_IPC sockets, which could let a local malicious user obtain sensitive information (Android Bug ID A-32551280). | 5.5 |
| 2020-01-08 | CVE-2020-0009 | Incorrect Default Permissions vulnerability in multiple products In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. | 5.5 |
| 2020-01-08 | CVE-2014-9908 | Unspecified vulnerability in Google Android 4.4/5.0.2/5.1.1 A Denial of Service vulnerability exists in Google Android 4.4.4, 5.0.2, and 5.1.1, which allows malicious users to block Bluetooh access (Android Bug ID A-28672558). low complexity google | 6.5 |