Vulnerabilities
Vulnerable Software
Google:  >> Android  Security Vulnerabilities
CAI Content Credentials is affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in arbitrary code execution in the context of the current user. An attacker could exploit this vulnerability to inject malicious scripts into a web page, potentially gaining elevated access or control over the victim's account or session. Exploitation of this issue requires user interaction in that a victim must visit a maliciously crafted URL or interact with a compromised web page. Scope is changed.
CVSS Score
8.2
EPSS Score
0.002
Published
2026-07-14
CAI Content Credentials is affected by an Insufficiently Protected Credentials vulnerability that could result in disclosure of sensitive information. An attacker could leverage this vulnerability to gain unauthorized read access. Exploitation of this issue does not require user interaction.
CVSS Score
7.5
EPSS Score
0.004
Published
2026-07-14
Use after free in GPU in Google Chrome on Android prior to 150.0.7871.125 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVSS Score
8.3
EPSS Score
0.002
Published
2026-07-14
Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVSS Score
9.6
EPSS Score
0.002
Published
2026-07-08
Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.115 allowed a local attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)
CVSS Score
3.3
EPSS Score
0.001
Published
2026-07-08
Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a security feature over a network.
CVSS Score
6.5
EPSS Score
0.005
Published
2026-07-03
Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.
CVSS Score
6.2
EPSS Score
0.003
Published
2026-07-03
Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose information locally.
CVSS Score
6.8
EPSS Score
0.003
Published
2026-07-03
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.1
EPSS Score
0.003
Published
2026-07-03
Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network.
CVSS Score
7.1
EPSS Score
0.003
Published
2026-07-03


Contact Us

Shodan ® - All rights reserved