Vulnerabilities > Google > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-01-18 CVE-2023-48351 Out-of-bounds Write vulnerability in Google Android 11.0/12.0
In video decoder, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
5.5
2024-01-18 CVE-2023-48352 Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0
In phasecheckserver, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
5.5
2024-01-18 CVE-2023-48353 Use After Free vulnerability in Google Android 11.0/12.0/13.0
In vsp driver, there is a possible use after free due to a logic error.
local
low complexity
google CWE-416
4.4
2024-01-18 CVE-2023-48354 Unspecified vulnerability in Google Android 11.0/12.0/13.0
In telephone service, there is a possible improper input validation.
local
low complexity
google
5.5
2024-01-18 CVE-2023-48355 Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0
In jpg driver, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
4.4
2024-01-18 CVE-2023-48356 Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0
In jpg driver, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
4.4
2024-01-18 CVE-2023-48357 Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0
In vsp driver, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
4.4
2024-01-18 CVE-2023-48358 Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0
In drm driver, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
4.4
2024-01-18 CVE-2023-48359 Out-of-bounds Write vulnerability in Google Android 11.0/12.0/13.0
In autotest driver, there is a possible out of bounds write due to improper input validation.
local
low complexity
google CWE-787
4.4
2024-01-10 CVE-2024-0333 Insufficient data validation in Extensions in Google Chrome prior to 120.0.6099.216 allowed an attacker in a privileged network position to install a malicious extension via a crafted HTML page.
network
high complexity
google fedoraproject
5.3