VYPR

Vendor CVEs

Google

All CVEs

11,411 total · sorted by risk
  • CVE-2012-6702MedJun 16, 2016
    risk 0.39cvss 5.9epss 0.02

    Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via vectors involving use of the srand function.

  • CVE-2026-53091impJun 24, 2026
    risk 0.38cvss 7.0epss 0.00

    kernel: net: pull headers in qdisc_pkt_len_segs_init()

  • CVE-2026-11238MedJun 5, 2026
    risk 0.38cvss 5.9epss 0.00

    Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security severity:…

  • CVE-2026-11199MedJun 4, 2026
    risk 0.38cvss 5.9epss 0.00

    Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. (Chromium security severity: Medium)

  • CVE-2026-0075MedJun 1, 2026
    risk 0.38cvss 5.9epss 0.00

    In multiple functions, there is a possible way to access the contacts database due to a SQL injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0061MedJun 1, 2026
    risk 0.38cvss 5.9epss 0.00

    In multiple functions of WindowState.java, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2025-12436MedNov 10, 2025
    risk 0.38cvss 5.9epss 0.00

    Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security severity: Medium)

  • CVE-2024-32928MedAug 19, 2024
    risk 0.38cvss 5.9epss 0.00

    The libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential man-in-the-middle attack on requests to Google cloud services by any host the traffic was routed through.

  • CVE-2024-32916MedJun 13, 2024
    risk 0.38cvss 5.9epss 0.00

    In fvp_freq_histogram_init of fvp.c, there is a possible Information Disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-32897MedJun 13, 2024
    risk 0.38cvss 5.9epss 0.00

    In ProtocolCdmaCallWaitingIndAdapter::GetCwInfo() of protocolsmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for…

  • CVE-2024-29747MedApr 5, 2024
    risk 0.38cvss 5.9epss 0.00

    In _dvfs_get_lv of dvfs.c, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-27231MedApr 5, 2024
    risk 0.38cvss 5.9epss 0.00

    In tmu_get_tr_stats of tmu.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-27234MedMar 11, 2024
    risk 0.38cvss 5.9epss 0.00

    In fvp_set_target of fvp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-25989MedMar 11, 2024
    risk 0.38cvss 5.9epss 0.00

    In gpu_slc_liveness_update of pixel_gpu_slc.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2019-9414MedSep 27, 2019
    risk 0.38cvss 5.9epss 0.01

    In wpa_supplicant, there is a possible man in the middle vulnerability due to improper input validation of the basicConstraints field of intermediary certificates. This could lead to remote information disclosure with no additional execution privileges needed. User interaction…

  • CVE-2019-9399MedSep 27, 2019
    risk 0.38cvss 5.9epss 0.00

    The Print Service is susceptible to man in the middle attacks due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions:…

  • CVE-2017-11063MedOct 10, 2017
    risk 0.38cvss 5.9epss 0.00

    In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, as a result of a race condition between two userspace processes that interact with the driver concurrently, a null pointer dereference can potentially occur.

  • CVE-2017-8242MedJun 13, 2017
    risk 0.38cvss 5.9epss 0.00

    In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver potentially leading to an arbitrary memory write.

  • CVE-2017-9045MedMay 18, 2017
    risk 0.38cvss 5.9epss 0.00

    The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof Feed and Schedule data by creating a modified blocks_v4.json file.

  • CVE-2016-5341MedDec 6, 2016
    risk 0.38cvss 5.9epss 0.01

    The GPS component in Android before 2016-12-05 allows man-in-the-middle attackers to cause a denial of service (GPS signal-acquisition delay) via an incorrect xtra.bin or xtra2.bin file on a spoofed Qualcomm gpsonextra.net or izatcloud.net host, aka internal bug 31470303 and…

  • CVE-2016-6709MedNov 25, 2016
    risk 0.38cvss 5.9epss 0.01

    An information disclosure vulnerability in Conscrypt and BoringSSL in Android 6.x before 2016-11-01 and 7.0 before 2016-11-01 could enable a man-in-the-middle attacker to gain access to sensitive information if a non-standard cipher suite is used by an application. This issue is…

  • CVE-2005-4900MedOct 14, 2016
    risk 0.38cvss 5.9epss 0.01

    SHA-1 is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of SHA-1 in TLS 1.2. NOTE: this CVE exists to provide a common identifier for referencing this SHA-1 issue; the existence…

  • CVE-2016-0818MedMar 12, 2016
    risk 0.38cvss 5.9epss 0.00

    The caching functionality in the TrustManagerImpl class in TrustManagerImpl.java in Conscrypt in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 mishandles the distinction between an intermediate CA and a trusted root CA, which allows…

  • CVE-2025-59730MedOct 6, 2025
    risk 0.37cvss epss 0.00

    When decoding a frame for a SANM file (ANIM v0 variant), the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution (width x height). A buffer of appropriate size is allocated depending on the resolution. This…

  • CVE-2025-59729MedOct 6, 2025
    risk 0.37cvss epss 0.00

    When parsing the header for a DHAV file, there's an integer underflow in offset calculation that leads to reading the duration from before the start of the allocated buffer. If we load a DHAV file that is larger than MAX_DURATION_BUFFER_SIZE bytes (0x100000) for example…

  • CVE-2025-32330MedSep 4, 2025
    risk 0.37cvss 5.7epss 0.00

    In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User…

  • CVE-2017-13318MedJan 28, 2025
    risk 0.37cvss 5.7epss 0.00

    In HeifDataSource::readAt of HeifDecoderImpl.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

  • CVE-2017-13317MedJan 28, 2025
    risk 0.37cvss 5.7epss 0.00

    In HeifDecoderImpl::getScanline of HeifDecoderImpl.cpp, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

  • CVE-2024-1676MedFeb 21, 2024
    risk 0.37cvss 5.4epss 0.19

    Inappropriate implementation in Navigation in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to spoof security UI via a crafted HTML page. (Chromium security severity: Low)

  • CVE-2022-1799MedJul 29, 2022
    risk 0.37cvss 5.7epss 0.00

    Incorrect signature trust exists within Google Play services SDK play-services-basement. A debug version of Google Play services is trusted by the SDK for devices that are non-GMS. We recommend upgrading the SDK past the 2022-05-03 release.

  • CVE-2020-24721MedSep 30, 2020
    risk 0.37cvss 5.7epss 0.00

    An issue was discovered in the GAEN (aka Google/Apple Exposure Notifications) protocol through 2020-09-29, as used in COVID-19 applications on Android and iOS. It allows a user to be put in a position where he or she can be coerced into proving or disproving an exposure…

  • CVE-2020-0379MedSep 17, 2020
    risk 0.37cvss 5.7epss 0.00

    In the Bluetooth service, there is a possible spoofing attack due to a logic error. This could lead to remote information disclosure of sensitive information with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:…

  • CVE-2018-6171MedJun 27, 2019
    risk 0.37cvss 5.7epss 0.00

    Use after free in Bluetooth in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension.

  • CVE-2018-18358MedDec 11, 2018
    risk 0.37cvss 5.7epss 0.00

    Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file.

  • CVE-2018-9566MedDec 6, 2018
    risk 0.37cvss 5.7epss 0.00

    In process_service_search_rsp of sdp_discovery.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure when connecting to a malicious Bluetooth device with no additional execution privileges needed. User…

  • CVE-2017-5042MedApr 24, 2017
    risk 0.37cvss 5.7epss 0.00

    Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies…

  • CVE-2026-28578MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of DevicePolicyManagerService.java, there is a possible desync from persistence due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0085MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In applySimpleFieldMaxSize of DataRowHandler.java, there is a possible way to insert a large contact name due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0079MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of ubsan_throwing_runtime.cpp, there is a possible persistent denial of service due to an integer overflow. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0074MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In getPreferredSize of LauncherProcessImageListener.kt, there is a possible denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0070MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of DevicePolicyManagerService.java, there is a possible way to hide a system critical package due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2026-0069MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In verifySignature of ApkChecksums.java, there is a possible way to cause a crash due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0067MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of ubsan_throwing_runtime.cpp, there is a possible way to cause a permanent denial of service due to a logic error in the code. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2026-0060MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In updateState of GraphicsDriverEnableAngleAsSystemDriverController.java, there is a possible persistent dos issue due to an unusual root cause. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2026-0043MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of ubsan_throwing_runtime.cpp, there is a possible persistent denial of service due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0042MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of ubsan_throwing_runtime.cpp, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-0018MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In multiple functions of AccessibilityManagerService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2025-48648MedJun 1, 2026
    risk 0.36cvss 5.5epss 0.00

    In isSameApp of NotificationManagerService.java, there is a possible persistent dos due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-8586MedMay 14, 2026
    risk 0.36cvss 5.5epss 0.00

    Inappropriate implementation in Chromoting in Google Chrome prior to 148.0.7778.168 allowed a local attacker to bypass discretionary access control via a malicious file. (Chromium security severity: Medium)

  • CVE-2025-48651MedApr 6, 2026
    risk 0.36cvss 5.5epss 0.00

    In importWrappedKey of KMKeymasterApplet.java, there is a possible way access keys that should be restricted due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for…

Page 140 of 229