Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-13 | CVE-2019-9467 | Command Injection vulnerability in Google Android In the Bootloader, there is a possible kernel command injection due to missing command sanitization. | 6.7 |
| 2019-11-13 | CVE-2019-2233 | Unspecified vulnerability in Google Android 10.0 In getUserCount and getCount of UserSwitcherController.java, there is possible new user creation due to a logic error. low complexity google | 6.8 |
| 2019-11-13 | CVE-2019-2212 | Out-of-bounds Read vulnerability in Google Android In poisson_distribution of random, there is an out of bounds read. | 5.5 |
| 2019-11-13 | CVE-2019-2209 | Out-of-bounds Read vulnerability in Google Android In BTA_DmPinReply of bta_dm_api.cc, there is a possible out of bounds read due to an incorrect bounds check. | 5.5 |
| 2019-11-13 | CVE-2019-2199 | Unspecified vulnerability in Google Android 10.0 In createSessionInternal of PackageInstallerService.java, there is a possible permissions bypass. | 6.7 |
| 2019-11-13 | CVE-2019-2198 | SQL Injection vulnerability in Google Android In Download Provider, there is a possible SQL injection vulnerability. | 5.5 |
| 2019-11-13 | CVE-2019-2197 | Insecure Default Initialization of Resource vulnerability in Google Android In processPhonebookAccess of CachedBluetoothDevice.java, there is a possible permission bypass due to an insecure default value. | 5.5 |
| 2019-11-13 | CVE-2019-2196 | SQL Injection vulnerability in Google Android In Download Provider, there is possible SQL injection. | 5.5 |
| 2019-11-12 | CVE-2011-1803 | Double Free vulnerability in Google Blink An issue exists in third_party/WebKit/Source/WebCore/svg/animation/SVGSMILElement.h in WebKit in Google Chrome before Blink M11 and M12 when trying to access a removed smil element. | 6.5 |
| 2019-11-12 | CVE-2011-1802 | NULL Pointer Dereference vulnerability in Google Blink WebKit in Google Chrome before Blink M11 and M12 does not properly handle counter nodes, which allows remote attackers to cause a denial of service (memory corruption). | 6.5 |