Vulnerabilidades em Google
5.229 resultadosAnálise Vexday
Com 4.763 CVEs catalogadas e 77 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração dos produtos Google é 3,6 vezes superior à média geral do catálogo, sinalizando risco operacional elevado para organizações que dependem desse ecossistema. O volume de 1.225 CVEs surgidas nos últimos 90 dias indica cadência intensa de descobertas, exigindo ciclos de patching ágeis. O tipo de falha mais recorrente é CWE-416 (use-after-free), classe de vulnerabilidade que frequentemente viabiliza execução de código arbitrário e escalada de privilégios. Destaque especial para CVE-2023-4863, com EPSS de 0,9974 — valor próximo ao máximo possível —, indicando probabilidade altíssima de exploração ativa e merecendo tratamento prioritário imediato.
CVE-2026-0034HIGHIn setPackageOrComponentEnabled of ManagedServices.java, there is a possible notification policy desync due to improper input validation. ThEPSS 0.1%CVE-2024-43083MEDIUMIn validate of WifiConfigurationUtil.java , there is a possible persistent denial of service due to resource exhaustion. This could lead to EPSS 0.1%CVE-2024-40661HIGHIn mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to access the microphone due to a missing permisEPSS 0.1%CVE-2023-21296—In Permission, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information EPSS 0.1%CVE-2024-0026MEDIUMIn multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to EPSS 0.1%CVE-2025-48623HIGHIn init_pkvm_hyp_vcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalatiEPSS 0.1%CVE-2024-27220HIGHIn lpm_req_handler of , there is a possible out of bounds memory access due to a missing bounds check. This could lead to local escalation oEPSS 0.1%CVE-2023-21268—In update of MmsProvider.java, there is a possible way to change directory permissions due to a path traversal error. This could lead to locEPSS 0.1%CVE-2018-9401HIGHIn many locations, there is a possible way to access kernel memory in user space due to an incorrect bounds check. This could lead to local EPSS 0.1%CVE-2025-36934HIGHIn bigo_worker_thread of private/google-modules/video/gchips/bigo.c, there is a possible use after free due to a race condition. This could EPSS 0.1%CVE-2025-36918HIGHIn aoc_service_read_message of aoc_ipc_core.c, there is a possible out of bounds read due to improper input validation. This could lead to lEPSS 0.1%CVE-2025-48544HIGHIn multiple locations, there is a possible way to read files belonging to other apps due to SQL injection. This could lead to local escalatiEPSS 0.1%CVE-2026-0122HIGHIn multiple places, there is a possible out of bounds write due to memory corruption. This could lead to remote code execution with no additEPSS 0.1%CVE-2024-31311MEDIUMIn increment_annotation_count of stats_event.c, there is a possible out of bounds write due to a missing bounds check. This could lead to loEPSS 0.1%CVE-2024-43084MEDIUMIn visitUris of multiple files, there is a possible information disclosure due to a confused deputy. This could lead to local information diEPSS 0.1%CVE-2023-40111HIGHIn setMediaButtonReceiver of MediaSessionRecord.java, there is a possible way to send a pending intent on behalf of system_server due to a cEPSS 0.1%CVE-2025-26421MEDIUMIn multiple locations, there is a possible lock screen bypass due to a logic error in the code. This could lead to local escalation of priviEPSS 0.1%CVE-2024-23707HIGHIn multiple locations, there is a possible permissions bypass due to improper input validation. This could lead to local escalation of priviEPSS 0.1%CVE-2023-21375—In Sysproxy, there is a possible out of bounds write due to an integer underflow. This could lead to local escalation of privilege with no aEPSS 0.1%CVE-2025-22425MEDIUMIn onCreate of InstallStart.java, there is a possible permissions bypass due to improper input validation. This could lead to local escalatiEPSS 0.1%