Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-25 | CVE-2024-47025 | Unspecified vulnerability in Google Android In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error in the code. | 5.5 |
| 2024-10-25 | CVE-2024-47026 | Out-of-bounds Read vulnerability in Google Android In gsc_gsa_rescue of gsc_gsa.c, there is a possible out of bounds read due to an incorrect bounds check. | 5.5 |
| 2024-10-25 | CVE-2024-47028 | Integer Overflow or Wraparound vulnerability in Google Android In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow. | 4.4 |
| 2024-10-25 | CVE-2024-47029 | Out-of-bounds Read vulnerability in Google Android In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check. | 5.5 |
| 2024-10-25 | CVE-2024-47034 | Out-of-bounds Read vulnerability in Google Android there is a possible out of bounds read due to a missing bounds check. | 5.5 |
| 2024-10-15 | CVE-2024-9958 | Unspecified vulnerability in Google Chrome Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9962 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Permissions in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9963 | Unspecified vulnerability in Google Chrome Insufficient data validation in Downloads in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. | 4.3 |
| 2024-10-15 | CVE-2024-9964 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Payments in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. | 4.3 |
| 2024-10-15 | CVE-2024-9966 | Unspecified vulnerability in Google Chrome Inappropriate implementation in Navigations in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to bypass content security policy via a crafted HTML page. | 5.3 |