Google Latest Vulnerabilities

November 20

Possible Blocking of Internet Traffic Through VPN Due to Bad UID Check

CVE-2018-9487
GoogleAndroid

Possible Out of Bounds Read Leads to Local Information Disclosure Over Bluetooth

CVE-2018-9486
GoogleAndroid

Possible Out of Bounds Read in l2cble_process_sig_cmd Could Lead to Remote Information Disclosure

CVE-2018-9485
GoogleAndroid

Possible Out of Bounds Read Leads to Remote Information Disclosure

CVE-2018-9484
GoogleAndroid

Possible Out of Bounds Read Leads to Remote Information Disclosure in BTA_DM

CVE-2018-9483
GoogleAndroid

Possible Out of Bounds Read in BTIF HD Could Lead to Local Information Disclosure

CVE-2018-9482
GoogleAndroid

Possible Out-of-Bounds Read Leads to Remote Information Disclosure

CVE-2018-9481
GoogleAndroid

Possible Out-of-Bounds Read in BTA's bta_hd_get_report_act Could Lead to Remote Information Disclosure

CVE-2018-9480
GoogleAndroid

Out of Bounds Write Vulnerability in sdp_server.cc Could Lead to Remote Code Execution

CVE-2018-9479
GoogleAndroid

Out of Bounds Write Vulnerability in SecureDrop Server Could Lead to Remote Code Execution

CVE-2018-9478
GoogleAndroid

Possible Authentication Bypass in Settings App

CVE-2018-9477
GoogleAndroid

Possible Out of Bounds Stack Write in Bluetooth Function Could Lead to Remote Escalation of Privilege

CVE-2018-9475
GoogleAndroid

Possible Serialization/Deserialization Mismatch in MediaPlayer.java Could Lead to Local Escalation of Privilege

CVE-2018-9474
GoogleAndroid

Possible Out-of-Bounds Write in xmlMemStrdupLoc Could Lead to Remote Code Execution

CVE-2018-9472
GoogleAndroid

Loss of Data through Deserialization: A Local Escalation of Privilege Threat

CVE-2018-9471
GoogleAndroid

Potential Out-of-Bounds Write in BFF Scanner Could Lead to Remote Escalation of Privilege

CVE-2018-9470
GoogleAndroid

Possible Spoofed Shortcut Creation in ShortcutService.java Leads to Local Escalation of Privilege

CVE-2018-9469
GoogleAndroid

Possible Read/Write of Arbitrary Files Through Permissions Bypass

CVE-2018-9468
GoogleAndroid

Code Execution Vulnerability in CarAppService Deserialization Logic

CVE-2024-10382
GoogleAndroid

November 19

Possible Out of Bounds Write in valid.c Could Lead to Remote Escalation of Privilege

CVE-2018-9466
GoogleAndroid

Possible Out of Bounds Read Vulnerability in Sdp_utils

CVE-2018-9456
GoogleAndroid

Possible Resource Exhaustion in M3UParser.cpp Leads to Denial of Service

CVE-2018-9440
GoogleAndroid

Remote Code Execution Vulnerability in Builtins' ArrayConcatVisitor

CVE-2018-9433
GoogleAndroid

Potential Permissions Bypass in BluetoothPermissionActivity

CVE-2018-9432
GoogleAndroid

Possible Out of Bounds Write in AAudioServiceStreamBase Could Lead to Local Arbitrary Code Execution

CVE-2018-9428
GoogleAndroid

Possible Out-of-Bounds Write in CryptoPlugin::decrypt Could Lead to Local Escalation of Privilege

CVE-2018-9424
GoogleAndroid

Possible Information Leak in Binder due to Uninitialized Data

CVE-2018-9421
GoogleAndroid

Possible Information Disclosure in BnCameraService::onTransact

CVE-2018-9420
GoogleAndroid

Possible Out of Bounds Read Vulnerability in l2cble_process_sig_cmd Could Lead to Remote Information Disclosure

CVE-2018-9419
GoogleAndroid

Possible Use-After-Free Vulnerability in f_hid.c could lead to Local Escalation of Privilege

CVE-2018-9417
GoogleAndroid

Possible Resource Exhaustion in ID3.cpp May Lead to Denial of Service

CVE-2018-9412
GoogleAndroid

Possible Out-of-Bounds Write in ClearKeyCasPlugin.cpp Could Lead to Remote Arbitrary Code Execution

CVE-2018-9411
GoogleAndroid

Possible Out of Bounds Read in FontUtils.cpp Could Lead to Local Information Disclosure

CVE-2018-9410
GoogleAndroid

Possible Out of Bounds Read and Code Execution Vulnerability in smp_l2c.cc

CVE-2018-9365
GoogleAndrioid

Possible Out of Bounds Write in HWCSession::SetColorModeById Could Lead to Local Escalation of Privilege

CVE-2018-9409
GoogleAndroid

Potential Out-of-Bounds Write in cmd_flash_mmc_sparse_img Could Lead to Local Escalation of Privilege

CVE-2018-9372
GoogleAndroid

Mediatek Preloader Vulnerable to Out-of-Bounds Reads and Writes

CVE-2018-9371
GoogleAndroid

Memory Corruption Vulnerability in Download.c Leads to Local Escalation of Privilege

CVE-2018-9370
GoogleAndroid

Local Escalation of Privilege Vulnerability

CVE-2018-9369
GoogleAndroid

Possible Local Escalation of Privilege via Arbitrary Kernel Memory Write in mtkscoaudio debugfs

CVE-2018-9368
GoogleAndroid

Possible Out of Bounds Write Vulnerability in FT_ACDK_CCT_V2_OP_ISP_SET_TUNING_PARAS

CVE-2018-9367
GoogleAndroid

Possible Out of Bounds Write in ImsaClient.cpp and VideoTelephony.c Could Lead to Local Escalation of Privilege

CVE-2018-9366
GoogleAndroid

Type Confusion Vulnerability in Chrome Prior to 131.0.6778.85

CVE-2024-11395
GoogleChrome

LG LAF Component Vulnerability: Bypass of Secure Boot through Special Command

CVE-2018-9364
GoogleAndroid

Possible Integer Overflow in SMF's eas_smf.c Could Lead to Remote Denial of Service

CVE-2018-9348
GoogleAndroid

Possible Information Disclosure Through Uninitialized Data

CVE-2018-9346
GoogleAndroid

Possible Information Disclosure Vulnerability in BnAudioPolicyService::onTransact

CVE-2018-9345
GoogleAndroid

Possible Use After Free Vulnerability in DescramblerImpl.cpp Could Lead to Local Escalation of Privilege

CVE-2018-9344
GoogleAndroid

Possible Out of Bound Write Leads to Remote Arbitrary Code Execution

CVE-2018-9341
GoogleAndroid

Out-of-Bounds Information Disclosure Vulnerability in ResStringPool::setTo

CVE-2018-9340
GoogleAndroid

Possible Escalation of Privilege Vulnerability in Parcel

CVE-2018-9339
GoogleAndroid

Possible Out of Bounds Write in ResStringPool::setTo Could Lead to Local Escalation of Privilege

CVE-2018-9338
GoogleAndroid

Potential Local Escalation of Privilege Vulnerability in PermissionManagerServiceImpl

CVE-2023-21270
GoogleAndrioid

Permission Bypass through Write Size Mismatch

CVE-2017-13315
GoogleAndroid

Dangling sk pointer in AF_SMC

CVE-2024-50293
Google

November 15

Infinite Loop and Resource Exhaustion in ESQueue's dequeueAccessUnitMPEG4Video

CVE-2017-13313
GoogleAndroid

Possible Security Bypass in NetworkManagementService.java

CVE-2017-13314
GoogleAndroid

Possible Parcel Read/Write Mismatch in MediaCas.java Leads to Local Escalation of Privilege

CVE-2017-13312
GoogleAndroid

Possible Read/Write Serialization Issue Leading to Privilege Bypass

CVE-2017-13311
GoogleAndroid

Possible Serialization Issue Leads to Permissions Bypass

CVE-2017-13310
GoogleAndroid

Possible Plaintext Leak in ConscryptEngine.java Due to Improper Crypto Use

CVE-2017-13309
GoogleAndroid

November 14

Inappropriate Trust of Package Name Leads to Information Disclosure

CVE-2017-13227
GoogleAndroid5.5MEDIUM

November 13

CVE-2024-40660
GoogleAndroid

CVE-2024-43081
GoogleAndroid

CVE-2024-23715
GoogleAndroid7.8HIGH

CVE-2024-43085
GoogleAndroid

Possible Arbitrary Code Execution in PVRSRVRGXKickTA3DKM's rgxta3d.c Due to Improper Input Validation

CVE-2023-35686
GoogleAndroid7.8HIGH

Arbitrary Code Execution Vulnerability in Devicemem_Server.c Could Lead to Local Escalation of Privilege

CVE-2023-35659
GoogleAndroid7.8HIGH

November 7

Unknown File Type Vulnerability in Google Quickshare

CVE-2024-10668
GoogleNearby

November 6

Heap Corruption Vulnerability in Google Chrome on Android

CVE-2024-10826
Google

Heap Corruption Vulnerability in Google Chrome Prior to 130.0.6723.116

CVE-2024-10827
Google

November 4

Path Traversal Vulnerability: Write Arbitrary Files via Archive Extraction

CVE-2024-10389
GoogleSafearchive

October 29

Out of Bounds Write in Chrome Prior to 130.0.6723.92 Allowed Remote Attacker to Access Memory

CVE-2024-10487
GoogleChrome👾

Potential Heap Corruption Vulnerability in Google Chrome Before 130.0.6723.92

CVE-2024-10488
GoogleChrome

Google Docs RSVP Cross-Site Request Forgery Vulnerability Allows Stored XSS

CVE-2024-49672
GoogleGoogle Docs Rsvp6.1MEDIUM

October 25

Possible Out-of-Bounds Read Vulnerability in syscall.c Could Lead to Local Escalation of Privilege

CVE-2024-47041
GoogleAndroid7.8HIGH

Possible Out of Bounds Write in virtio/headers/include/virtio/virtio_ring.h Could Lead to Local Escalation of Privilege

CVE-2024-47035
GoogleAndroid7.8HIGH

Possible Out-of-Bounds Read Leads to Local Information Disclosure

CVE-2024-47034
GoogleAndroid5.5MEDIUM

Potential Memory Corruption Vulnerability in lwis_allocator Could Lead to Local Escalation of Privilege

CVE-2024-47033
GoogleAndroid7.8HIGH

New Article Reveals Vulnerabilities in Popular Security Software

CVE-2024-47031
GoogleAndroid

Securing the Grid: A Cybersecurity Nightmare for Countries

CVE-2024-47030
GoogleAndroid

Possible Out of Bounds Read Leads to Local Information Disclosure

CVE-2024-47029
GoogleAndroid5.5MEDIUM

Possible Out of Bounds Read Leads to Local Information Disclosure

CVE-2024-47028
GoogleAndroid4.4MEDIUM

Possible Arbitrary Physical Memory Access Vulnerability in sm_mem_compat_get_vmm_obj

CVE-2024-47027
GoogleAndroid7.8HIGH

Possible Out of Bounds Read Vulnerability in gsc_gsa_rescue Could Lead to Local Information Disclosure

CVE-2024-47026
GoogleAndroid5.5MEDIUM

Possible Information Disclosure Vulnerability in drm_fw.c's ppmp_protect_buf

CVE-2024-47025
GoogleAndroid5.5MEDIUM

Possible Out of Bounds Write in virtio_ring.h Could Lead to Local Escalation of Privilege

CVE-2024-47024
GoogleAndroid7.8HIGH

Possible Man-in-the-Middle Attack Due to Logic Error in Code

CVE-2024-47023
GoogleAndroid8.1HIGH

Alexa's Echo: Security Vulnerabilities Exposed

CVE-2024-47022
GoogleAndroid7.5HIGH

Possible Remote Information Disclosure Vulnerability in sms_ExtractCbLanguage

CVE-2024-47021
GoogleAndroid7.5HIGH

Temporary Network Issue Affecting Internet Service

CVE-2024-47020
GoogleAndroid7.5HIGH

Possible Out-of-Bounds Read Leads to Local Information Disclosure and Baseband Firmware Compromise

CVE-2024-47019
GoogleAndroid5.5MEDIUM

Possible Buffer Overflow Vulnerability Could Lead to Local Information Disclosure

CVE-2024-47018
GoogleAndroid5.5MEDIUM

Use After Free Vulnerability in ufs.c Could Lead to Local Escalation of Privilege

CVE-2024-47017
GoogleAndroid7.8HIGH

Potential Privilege Escalation Vulnerability

CVE-2024-47016
GoogleAndroid

Possible Out-of-Bounds Read Leading to Local Information Disclosure in ProtocolMiscHwConfigChangeAdapter

CVE-2024-47015
GoogleAndroid

Vulnerabilities in Popular Web Services Could Affect Millions

CVE-2024-47014
GoogleAndroid

Possible Arbitrary Write Vulnerability in pmuc_rae

CVE-2024-47013
GoogleAndroid

Potential Out of Bounds Write Vulnerability in mm_GetMobileIdIndexForNsUpdate

CVE-2024-47012
GoogleAndroid7.8HIGH

Possible Modem Crash Due to Input Validation Flaw

CVE-2024-44101
GoogleAndroid7.5HIGH