Vulnerabilidades en Google

5244 resultados
Análisis Vexday

Com 4.763 CVEs catalogadas e 77 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração dos produtos Google é 3,6 vezes superior à média geral do catálogo, sinalizando risco operacional elevado para organizações que dependem desse ecossistema. O volume de 1.225 CVEs surgidas nos últimos 90 dias indica cadência intensa de descobertas, exigindo ciclos de patching ágeis. O tipo de falha mais recorrente é CWE-416 (use-after-free), classe de vulnerabilidade que frequentemente viabiliza execução de código arbitrário e escalada de privilégios. Destaque especial para CVE-2023-4863, com EPSS de 0,9974 — valor próximo ao máximo possível —, indicando probabilidade altíssima de exploração ativa e merecendo tratamento prioritário imediato.

CVE-2023-21359In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the BEPSS 0.1%CVE-2018-9403HIGHIn the MTK_FLP_MSG_HAL_DIAG_REPORT_DATA_NTF handler of flp2hal_- interface.c, there is a possible stack buffer overflow due to a missingEPSS 0.1%CVE-2024-40672HIGHIn onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This couEPSS 0.1%CVE-2023-21364In ContactsProvider, there is a possible crash loop due to resource exhaustion. This could lead to local persistent denial of service in theEPSS 0.1%CVE-2024-29782MEDIUMIn tmu_get_tr_num_thresholds of tmu.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local informEPSS 0.1%CVE-2024-27234MEDIUMIn fvp_set_target of fvp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclEPSS 0.1%CVE-2025-36908MEDIUMIn lwis_top_register_io of lwis_device_top.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to lEPSS 0.1%CVE-2024-32891HIGHIn sec_media_unprotect of media.c, there is a possible memory corruption due to a race condition. This could lead to local escalation of priEPSS 0.1%CVE-2023-21309In libcore, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no adEPSS 0.1%CVE-2024-29739MEDIUMIn tmu_get_temp_lut of tmu.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disEPSS 0.1%CVE-2023-21352In NFA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additiEPSS 0.1%CVE-2025-48559MEDIUMIn multiple functions of AppOpsService.java, there is a possible add a large amount of app ops due to improper input validation. This could EPSS 0.1%CVE-2024-56191HIGHIn dhd_process_full_gscan_result of dhd_pno.c, there is a possible EoP due to an integer overflow. This could lead to local escalation of prEPSS 0.1%CVE-2023-35653In TBD of TBD, there is a possible way to access location information due to a permissions bypass. This could lead to local information discEPSS 0.1%CVE-2024-29750MEDIUMIn km_exp_did_inner of kmv.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disEPSS 0.1%CVE-2025-48596HIGHIn appendFrom of Parcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of prEPSS 0.1%CVE-2024-25989MEDIUMIn gpu_slc_liveness_update of pixel_gpu_slc.c, there is a possible out of bounds read due to a missing bounds check. This could lead to locaEPSS 0.1%CVE-2024-43764HIGHIn onPrimaryClipChanged of ClipboardListener.java, there is a possible way to partially bypass lock screen. This could lead to local escalatEPSS 0.1%CVE-2023-21313In Core, there is a possible way to forward calls without user knowledge due to a missing permission check. This could lead to local escalatEPSS 0.1%CVE-2024-23712MEDIUMIn multiple functions of AppOpsService.java, there is a possible way to saturate the content of /data/system/appops_accesses.xml due to resoEPSS 0.1%