CVE-2017-0668

The CVE-2017-0668 entry describes an information disclosure vulnerability in the Android framework affecting Android versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, and 7.1.2 (Android ID A-22011579). The connected sources re-iterate that this is an information disclosure issue in Framework/...

CVE-2017-0670

CVE-2017-0670 describes a denial‑of‑service in the Android framework affecting Android versions 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, and 7.1.2 (Android ID: A-36104177). The vulnerability is listed under the Android Framework component as a DoS issue; no detailed root cause or exploit information...

The vulnerability of the software interface of the Android operating system’s Framework, allowing a hacker to inject arbitrary code

The vulnerability of the software interface of the Android operating system’s Framework is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to inject arbitrary code remotely, using a local malicious application...

The vulnerability of the software interface of the Android operating system’s Framework, allowing a hacker to inject arbitrary code

The vulnerability of the software interface of the Android operating system’s Framework is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to inject arbitrary code through a local malicious application, working remotely...

The vulnerability of the software interface of the Android operating system’s Framework, allowing a hacker to inject arbitrary code

The vulnerability of the software interface of the Android operating system’s Framework is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to inject arbitrary code remotely, using a local malware application...

Vulnerability of the Framework API of the Android operating system, which allows a hacker to gain access to user permissions

The vulnerability of the Framework API of the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to enhance their privileges and gain access to user permissions through a local malware application...

Google Android Framework APIs Information Disclosure Vulnerability (CNVD-2017-08229)

Google Android is a Linux-based operating system for smartphone devices. An information disclosure vulnerability exists in the Google Android Framework APIs, which can be exploited by remote attackers to build malicious applications, bypass security protections, and obtain sensitive information...

Google Android Framework APIs elevation of privilege vulnerability (CNVD-2017-08230)

Google Android is a Linux-based operating system for smartphone devices. An elevation of privilege vulnerability exists in the Google Android Framework APIs, which can be exploited by remote attackers to build malicious applications, execute arbitrary code, and elevate privileges...

Google Android Framework APIs elevation of privilege vulnerability (CNVD-2017-01457)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android Framework APIs. An attacker can exploit this vulnerability to execute arbitrary code with elevated privileges...

Google Android Framework APIs elevation of privilege vulnerability (CNVD-2017-01458)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. Google Android Framework APIs elevation of privilege vulnerability. An attacker can exploit the vulnerability to execute arbitrary code with elevated privileges...

Google Android Framework APIs Information Disclosure Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An information disclosure vulnerability exists in Google Android Framework APIs. Attackers use this vulnerability to obtain sensitive information and launch further attacks...

CVE-2017-0421

An information disclosure vulnerability in the Framework APIs could enable a local malicious application to bypass operating system protections that isolate application data from other applications. This issue is rated as High because it could be used to gain access to data that the application...

CVE-2017-0411

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally...

CVE-2017-0410

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally...

Google Android Framework APIs Remote Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA.Framework APIs are one of the API components used to create the framework. A remote elevation of privilege vulnerability exists in the Google Android Framework APIs. A remote...

Google Android Framework API elevation of privilege vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA for short. The Framework API is one of the API components used to create the framework. An elevation of privilege vulnerability exists in the Framework API in Android. An attacker c...

CVE-2016-6715

An elevation of privilege vulnerability in the Framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could allow a local malicious application to record audio without the user's permission. This issue is rated as...

UBUNTU-CVE-2016-6715

An elevation of privilege vulnerability in the Framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could allow a local malicious application to record audio without the user's permission. This issue is rated as...

CVE-2016-7988

On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.Samsung.android.intent.action.SETWIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of...

Code injection

On Samsung Galaxy S4 through S7 devices, absence of permissions on the BroadcastReceiver responsible for handling the com.Samsung.android.intent.action.SETWIFI intent leads to unsolicited configuration messages being handled by wifi-service.jar within the Android Framework, a subset of...