CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2017-8211

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has...

Cvelist•added 2017/11/22 7:0 p.m.•11 views

CVE-2017-8141

The Touch Panel TP driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android system tricks a user into installing a malicious application, and the application can start multiple...

7.8AI score0.00114EPSS

Cvelist•added 2017/11/22 7:0 p.m.•13 views

CVE-2017-8207

The driver of honor 5C, honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has...

CVE-2017-2729

The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than CAM-UL00C00B193 have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installin...

8AI score0.0017EPSS

Cvelist•added 2017/11/22 7:0 p.m.•10 views

CVE-2017-2723

The Files APP 7.1.1.308 and earlier versions in some Huawei mobile phones has a vulnerability of plaintext storage of users' Safe passwords. An attacker with the root privilege of an Android system could forge the Safe to read users' plaintext Safe passwords, leading to information leak...

6.3AI score0.00012EPSS

CVE-2017-2698

The ddrdevfreq driver in versions earlier than GRA-UL00C00B197 has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or...

7.8AI score0.00058EPSS

Cvelist•added 2017/11/22 7:0 p.m.•12 views

CVE-2017-8208

Cvelist•added 2017/11/22 7:0 p.m.•12 views

CVE-2017-2696

The emergdata driver in CAM-L21C10B130 and earlier versions, CAM-L21C185B141 and earlier versions has a buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter t...

7.9AI score0.00073EPSS

Cvelist•added 2017/11/22 7:0 p.m.•17 views

CVE-2017-8150

The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 have an arbitrary memory write vulnerability due to the lack of parameter validation. An attacker wi...

7.8AI score0.00097EPSS

CVE-2017-8210

Cvelist•added 2017/11/22 7:0 p.m.•18 views

CVE-2017-8209

CVE•added 2017/11/22 7:0 p.m.•49 views

CVE-2017-2697

The CVE-2017-2697 entry describes a buffer overflow in the Goldeneye driver used by Huawei smartphones (e.g., models such as GT3, Honor series, P9 Lite, Y6 II) and potentially other devices listed in the record. Root-privilege access is required for an attacker to induce a user to install a malic...

9.3CVSS7.7AI score0.00073EPSS

Exploits0References1Affected Software1

CVE-2017-2726

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify...

8.7AI score0.00185EPSS

CVE•added 2017/11/22 7:0 p.m.•49 views

CVE-2017-8210

The CVE-2017-8210 entry concerns a buffer overflow in the driver of Huawei Honor 5C and Honor 6X smartphones. Affected software versions are earlier than NEM-AL10C00B356 and earlier than Berlin-L21HNC432B360. The root cause is lack of parameter validation in the driver, enabling an attacker to tr...

9.3CVSS7.9AI score0.00177EPSS

Exploits0References1Affected Software1

Cvelist•added 2017/11/22 7:0 p.m.•15 views

CVE-2017-8212

UbuntuCve•added 2017/11/16 11:29 p.m.•22 views

CVE-2017-0841

A remote code execution vulnerability in the Android system libutils. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026...

9.3CVSS7.6AI score0.00195EPSS

CVE•added 2017/11/16 11:0 p.m.•52 views

CVE-2017-0860

CVE-2017-0860 is an elevation-of-privilege vulnerability in Android’s inputdispatcher subsystem (Android System). Affected versions include 5.0.2, 5.1.1, 6.0/6.0.1, 7.0, 7.1.1, and 7.1.2. The root cause is described as an inputdispatcher-related elevation of privilege, allowing an attacker to gai...

5.3CVSS5.8AI score0.00016EPSS

Exploits0References1Affected Software1

CNVD•added 2017/11/07 12:0 a.m.•1 views

Google Android System Remote Code Execution Vulnerability

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. A remote code execution vulnerability exists in System for Google Android 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, which can be exploited by attackers to execute...

9.3CVSS8.5AI score0.00195EPSS

CNVD•added 2017/10/09 12:0 a.m.•2 views

Google Android system (rild) information disclosure vulnerability

Android is a free and open-source Linux-based operating system for mobile devices such as smartphones and tablets, led and developed by Google Inc. and the Open Handset Alliance. Android A security vulnerability exists in the Android system rild that allows remote attackers to exploit the...

7.5CVSS7.4AI score0.00282EPSS