Google Fuchsia
6 CVEs affecting Google Fuchsia. Latest disclosed: 2025-01-30. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-22566 | Critical | 9.8 | 2022-01-18 | An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged context. T… |
CVE-2020-16022 | High | 8.8 | 2021-01-08 | Insufficient policy enforcement in networking in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially bypass firewall controls via a cr… |
CVE-2022-0247 | High | 7.5 | 2022-02-25 | An issue exists in Fuchsia where VMO data can be modified through access to copy-on-write snapshots. A local attacker could modify objects in the VMO that they… |
CVE-2024-10604 | Medium | 5.3 | 2025-01-30 | Vulnerabilities in the algorithms used by Fuchsia to populate network protocol header fields, specifically the TCP ISN, TCP timestamp, TCP and UDP source ports… |
CVE-2022-0882 | Medium | 5.3 | 2022-05-03 | A bug exists where an attacker can read the kernel log through exposed Zircon kernel addresses without the required capability ZX_RSRC_KIND_ROOT. It is recomme… |
CVE-2021-22556 | Medium | 5.3 | 2022-05-03 | The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that th… |