Lucene search
K

403 matches found

Prion
Prion
added 2019/02/11 11:29 p.m.20 views

Out-of-bounds

In nfcncifsetconfigstatus of nfcncif.cc in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. Use...

4.6CVSS7.7AI score0.00186EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/02/11 11:29 p.m.22 views

CVE-2018-9584

In nfcncifsetconfigstatus of nfcncif.cc in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. Use...

7.8CVSS7.8AI score0.00186EPSS
Exploits0References2
Prion
Prion
added 2019/02/11 11:29 p.m.15 views

Privilege escalation

In savePhotoFromUriToUri of ContactPhotoUtils.java in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is possible unauthorized access to files within the contact app due to a confused deputy scenario. This could lead to local escalation of privilege with n...

4.4CVSS7.2AI score0.00193EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/02/11 11:29 p.m.21 views

Out-of-bounds

In avdtscbhdlreport of avdtscbact.cc in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges...

3.3CVSS6.2AI score0.00509EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/02/11 11:29 p.m.23 views

CVE-2018-9590

In addattr of sdpdiscovery.c in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interactio...

7.5CVSS7.1AI score0.01335EPSS
Exploits0References2
android
android
added 2019/02/01 12:0 a.m.38 views

CVE-2019-1992

In btahlsdpqueryresults of btahlmain.cc, there is a possible use-after-free due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

7.6CVSS7.2AI score0.01335EPSS
Exploits0References4Affected Software1
android
android
added 2019/02/01 12:0 a.m.35 views

CVE-2019-1991

In btifdmdatacopy of btifcore.cc, there is a possible out of bounds write due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

9.3CVSS7.6AI score0.02027EPSS
Exploits0References5Affected Software1
android
android
added 2019/01/01 12:0 a.m.38 views

CVE-2018-9583

In btaagparsecmer of btaagcmd.cc in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution in the bluetooth server with no additional execution privileges...

10CVSS4.1AI score0.02262EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2018/12/06 2:29 p.m.16 views

CVE-2018-9548

In multiple functions of ContentProvider.java, there is a possible permission bypass due to a missing URI validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:...

5.5CVSS5.8AI score0.00154EPSS
Exploits0References2
OSV
OSV
added 2018/12/06 2:29 p.m.3 views

CVE-2018-9559

In persistsetkey and other functions of cryptfs.cpp, there is a possible out-of-bounds write due to an uncaught error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:...

7.8CVSS5.9AI score0.00166EPSS
Exploits0References2
NVD
NVD
added 2018/12/06 2:29 p.m.15 views

CVE-2018-9554

In dumpExtractors of IMediaExtractor.cp, there is a possible disclosure of recently accessed media files due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

5.5CVSS5.8AI score0.00165EPSS
Exploits0References2
NVD
NVD
added 2018/12/06 2:29 p.m.21 views

CVE-2018-9552

In ihevcdsaoshiftctb of ihevcdsao.c there is a possible out of bounds write due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

5.5CVSS6AI score0.00529EPSS
Exploits0References2
Prion
Prion
added 2018/12/06 2:29 p.m.15 views

Out-of-bounds

In rwt2thandletlvdetect of rwt2tndef.cc, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC kernel with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Version...

7.2CVSS7.6AI score0.00172EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/12/06 2:29 p.m.16 views

Double free

In MasteringMetadata::Parse of mkvparser.cc there is a possible double free due to an insecure default value. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

9.3CVSS7.8AI score0.01089EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/12/06 2:29 p.m.14 views

Out-of-bounds

In persistsetkey and other functions of cryptfs.cpp, there is a possible out-of-bounds write due to an uncaught error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:...

4.6CVSS7.7AI score0.00166EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/12/06 2:29 p.m.16 views

Out-of-bounds

In lppTransposer of lpptran.cpp there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

9.3CVSS7.9AI score0.01089EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/12/06 2:29 p.m.17 views

Code injection

In reallyinstallpackage of install.cpp, there is a possible free of arbitrary memory due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0...

7.2CVSS7.7AI score0.00174EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/12/06 2:29 p.m.25 views

Out-of-bounds

In ihevcdsaoshiftctb of ihevcdsao.c there is a possible out of bounds write due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

4.3CVSS5.4AI score0.00529EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/12/06 2:0 p.m.22 views

CVE-2018-9552

In ihevcdsaoshiftctb of ihevcdsao.c there is a possible out of bounds write due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

5.4AI score0.00529EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/12/06 2:0 p.m.22 views

CVE-2018-9553

In MasteringMetadata::Parse of mkvparser.cc there is a possible double free due to an insecure default value. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...

8AI score0.01089EPSS
Exploits0References2
Rows per page
Query Builder