Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Google LLC — Vulnerabilities & Security Advisories 64

Browse all 64 CVE security advisories affecting Google LLC. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Google LLC operates as a multinational technology conglomerate specializing in internet-related services and products, including search engines, cloud computing, and online advertising. Its extensive software ecosystem, encompassing Android, Chrome, and Google Workspace, presents a broad attack surface that has historically been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities. With 64 recorded Common Vulnerabilities and Exposures, the company frequently addresses issues related to memory corruption and sandbox escape techniques. Notable security characteristics include rigorous automated patching and the widespread adoption of zero-trust principles across its infrastructure. While major public incidents are relatively rare due to proactive threat hunting, the sheer scale of its user base makes it a high-value target for state-sponsored actors and criminal syndicates seeking data exfiltration or persistent access.

Top products by Google LLC: Asylo Dart SDK guest-oslogin fscrypt libjxl Fuchsia Fuchsia Kernel AWS S3 Crypto SDK for GoLang Perfetto Dev Scripts protobuf-java Protobuf google/sa360-webquery-bigquery Data-Transfer-Project Google-oauth-java-client go-attestation Bazel Kubevirt Google Play Services SDK Play Services SDK Dart Drive for Desktop MacOS Protocolbuffers Google Exposure-notifications-verification-server SLO Generator Gerrit Google Cloud IoT Device SDK for Embedded C Bindiff VSCode-Bazel Exposure Notifications Verification Server Tink
CVE IDTitleCVSSSeverityPublished
CVE-2021-22545 Use-after-free in BinDiff — BindiffCWE-416 7.5 High2021-06-29
CVE-2021-22550 Enclave memory overwrite/overread vulnerability in Asylo UntrustedCacheMalloc::GetBuffer — AsyloCWE-823 6.5 Medium2021-06-08
CVE-2021-22549 Arbitrary enclave memory overwrite vulnerability in Asylo TrustedPrimitives::UntrustedCall — AsyloCWE-823 6.5 Medium2021-06-08
CVE-2021-22548 Arbitrary enclave memory overread vulnerability in Asylo TrustedPrimitives::UntrustedCall — AsyloCWE-788 6.5 Medium2021-06-08
CVE-2021-22547 Buffer overrun in Google Cloud IoT Device SDK for Embedded C — Google Cloud IoT Device SDK for Embedded CCWE-120 6.3 Medium2021-05-04
CVE-2021-22540 XSS in Dart SDK — Dart SDKCWE-79 6.1 -2021-04-22
CVE-2021-22539 Code execution in VSCode-bazel via malicious Bazel config files — VSCode-BazelCWE-73 8.2 High2021-04-16
CVE-2021-22538 Privilege escalation in RBAC system — Exposure Notifications Verification ServerCWE-20 6.3 Medium2021-03-31
CVE-2020-8902 SSRF in Rendertron — RendertronCWE-284 3.5 Low2021-02-23
CVE-2021-22553 Heap Memory exhaustion in Gerrit — GerritCWE-400 6.5 Medium2021-02-17
CVE-2020-8944 Unchecked buffer overrun in ecall_restore — AsyloCWE-120 5.3 Medium2020-12-15
CVE-2020-8943 Unchecked buffer overrun in enc_untrusted_recvfrom — AsyloCWE-120 5.3 Medium2020-12-15
CVE-2020-8942 Unchecked buffer overrun in enc_untrusted_read — AsyloCWE-120 5.3 Medium2020-12-15
CVE-2020-8941 Unchecked buffer overrun in enc_untrusted_inet_pton — AsyloCWE-120 5.3 Medium2020-12-15
CVE-2020-8940 Unchecked buffer overrun in enc_untrusted_recvmsg — AsyloCWE-120 5.3 Medium2020-12-15
CVE-2020-8939 Out of Bounds read in Asylo — AsyloCWE-125 5.3 Medium2020-12-15
CVE-2020-8938 Arbitrary enclave memory location write from untrusted environment — Asylo 5.3 Medium2020-12-15
CVE-2020-8937 Arbitrary enclave memory location write from untrusted environment — AsyloCWE-120 5.3 Medium2020-12-15
CVE-2020-8936 Arbitrary enclave memory overwrite vulnerability in ECall ecall_restore — AsyloCWE-125 5.3 Medium2020-12-15
CVE-2020-8935 Google Asylo 缓冲区错误漏洞 — Asylo 5.3 Medium2020-12-15
CVE-2020-8908 Temp directory permission issue in Guava — GuavaCWE-378 3.3 Low2020-12-10
CVE-2020-8929 Ciphertext integrity weakness in Tink — TinkCWE-176 5.3 Medium2020-10-19
CVE-2020-8927 Buffer overflow in Brotli library — BrotliCWE-130 5.3 Medium2020-09-15
CVE-2020-8905 Confidential Information Disclosure vulnerability in Asylo — AsyloCWE-120 2.8 Low2020-08-12
CVE-2020-8904 Arbitrary trusted memory overwrite vulnerability in Asylo — AsyloCWE-823 6.4 Medium2020-08-12
CVE-2020-8913 Local arbitrary code execution in splitinstall in Android's Play Core — Android Play CoreCWE-281 8.8 High2020-08-12
CVE-2020-8912 In-band key negotiation issue in AWS S3 Crypto SDK for GoLang — AWS S3 Crypto SDK for GoLangCWE-327 2.5 Low2020-08-11
CVE-2020-8911 CBC padding oracle in AWS S3 Crypto SDK for GoLang — AWS S3 Crypto SDK for GoLangCWE-327 5.6 Medium2020-08-11
CVE-2020-8918 TPM 1.2 key authorization values are vulnerable to a TPM transport eavesdropper — google/go-tpm libraryCWE-665 6.3 Medium2020-08-11
CVE-2020-8916 Memory leak in wpanctl can lead to DoS — wpantundCWE-401 5.0 Medium2020-07-07

This page lists every published CVE security advisory associated with Google LLC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.