Yongke Wang

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 76.0.3809.87 **Description** The issue is related to insufficient policy enforcement in storage, allowing a remote attacker who has compromised the renderer process to bypass site isolation. This can be achieved via a crafted HTML page, potentially leading to access to confidential information, denial of service, and impact on information availability. **Recommendations** For versions prior to 76.0.3809.87, update to version 76.0.3809.87 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android versions 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2 **Description** A elevation of privilege issue exists in the Android media framework, specifically in the `mediadrmserver` component. This issue may allow for unauthorized access to sensitive data or system resources. **Recommendations** For Android versions 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Android versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2 **Description** The issue is related to insufficient access control in the libeffects library of the Android Media Framework, which can be exploited by a remote attacker to elevate their privileges. **Recommendations** For versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.