Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-24 | CVE-2019-9635 | NULL Pointer Dereference vulnerability in Google Tensorflow NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file. | 6.5 |
| 2019-04-23 | CVE-2018-7576 | NULL Pointer Dereference vulnerability in Google Tensorflow Google TensorFlow 1.6.x and earlier is affected by: Null Pointer Dereference. | 6.5 |
| 2019-04-19 | CVE-2019-2040 | Out-of-bounds Read vulnerability in Google Android 9.0 In rw_i93_process_ext_sys_info of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. | 5.0 |
| 2019-04-19 | CVE-2019-2039 | Out-of-bounds Read vulnerability in Google Android In rw_i93_sm_detect_ndef of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. | 5.0 |
| 2019-04-19 | CVE-2019-2038 | Out-of-bounds Read vulnerability in Google Android In rw_i93_process_sys_info of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. | 5.5 |
| 2019-02-28 | CVE-2019-2001 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android The permissions on /proc/iomem were world-readable. | 5.5 |
| 2019-02-28 | CVE-2019-1998 | Unspecified vulnerability in Google Android 9.0 In event_handler of keymaster_app.c, there is possible resource exhaustion due to a table being lost on reboot. | 5.5 |
| 2019-02-28 | CVE-2019-1996 | Out-of-bounds Read vulnerability in Google Android 8.0/8.1/9.0 In avrc_pars_browse_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. | 6.5 |
| 2019-02-28 | CVE-2019-1995 | Unspecified vulnerability in Google Android In ComposeActivityEmail of ComposeActivityEmail.java, there is a possible way to silently attach files to an email due to a confused deputy. | 5.5 |
| 2019-02-19 | CVE-2019-5781 | Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. | 6.5 |