Vulnerabilidades en google
5229 resultadosCVE-2026-15115LOWInsufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.115 allowed a local attacker toEPSS 0.1%CVE-2024-27231MEDIUMIn tmu_get_tr_stats of tmu.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disEPSS 0.1%CVE-2023-21377—In SELinux Policy, there is a possible restriction bypass due to a permissions bypass. This could lead to local information disclosure with EPSS 0.1%CVE-2025-48647HIGHIn cpm_fwtp_msg_handler of cpm/google/lib/tracepoint/cpm_fwtp_ipc.c, there is a possible memory overwrite due to improper input validation. EPSS 0.1%CVE-2025-26454HIGHIn validateUriSchemeAndPermission of DisclaimersParserImpl.java , there is a possible way to access data from another user due to a confusedEPSS 0.1%CVE-2018-9477HIGHIn the development options section of the Settings app, there is a possible authentication bypass due to a missing permission check. This coEPSS 0.1%CVE-2024-22012HIGHthere is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional eEPSS 0.1%CVE-2023-40123—In updateActionViews of PipMenuView.java, there is a possible bypass of a multi user security boundary due to a confused deputy. This could EPSS 0.1%CVE-2023-40139—In FillUi of FillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local informatiEPSS 0.1%CVE-2024-34733HIGHIn DevmemXIntMapPages of devicemem_server.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to locEPSS 0.1%CVE-2023-40135—In applyCustomDescription of SaveUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead toEPSS 0.1%CVE-2025-48589HIGHIn multiple functions of HeaderPrivacyIconsController.kt, there is a possible way to grand permissions across user due to a logic error in EPSS 0.1%CVE-2023-21277—In visitUris of RemoteViews.java, there is a possible way to reveal images across users due to a missing permission check. This could lead tEPSS 0.1%CVE-2026-14094HIGHUse after free in Installer in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalaEPSS 0.1%CVE-2025-26423MEDIUMIn validateIpConfiguration of WifiConfigurationUtil.java, there is a possible way to trigger a permanent DoS due to a missing bounds check. EPSS 0.1%CVE-2023-40085LOWIn convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to locEPSS 0.1%CVE-2023-21279—In visitUris of RemoteViews.java, there is a possible cross-user media read due to a confused deputy. This could lead to local information dEPSS 0.1%CVE-2023-21305—In Content, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disEPSS 0.1%CVE-2024-34748HIGHIn _DevmemXReservationPageAddress of devicemem_server.c, there is a possible use-after-free due to improper casting. This could lead to locaEPSS 0.1%CVE-2024-27211HIGHIn AtiHandleAPOMsgType of ati_Main.c, there is a possible OOB write due to a missing null check. This could lead to local escalation of privEPSS 0.1%