CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3721 matches found

CVE•added 2018/11/06 5:0 p.m.•73 views

CVE-2018-9465

Summary : CVE-2018-9465 affects the Android kernel, specifically the binder.c task_get_unused_fd_flags path, where a use-after-free can cause memory corruption. This could enable local privilege escalation with no extra privileges required and without user interaction. Multiple connected advisori...

7.8CVSS7.1AI score0.00033EPSS

Exploits0References2Affected Software1

Cvelist•added 2018/11/06 5:0 p.m.•18 views

CVE-2018-9422

In getfutexkey of futex.c, there is a use-after-free due to improper locking. This could lead to local escalation of privilege with no additional privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-74250718 References: Upstre...

7.5AI score0.00056EPSS

Exploits0References4

Debian CVE•added 2018/11/06 5:0 p.m.•36 views

CVE-2018-9415

In driveroverridestore and driveroverrideshow of bus.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel...

7.8CVSS7.8AI score0.00064EPSS

Exploits0

Cvelist•added 2018/11/06 5:0 p.m.•18 views

CVE-2018-9415

7.1AI score0.00064EPSS

Exploits0References4

UbuntuCve•added 2018/11/06 12:0 a.m.•28 views

CVE-2018-9516

In hiddebugeventsread of drivers/hid/hid-debug.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android...

7.8CVSS7.1AI score0.00063EPSS

Exploits0References7

OSV•added 2018/11/06 12:0 a.m.•0 views

UBUNTU-CVE-2018-9516

7.8CVSS7.1AI score0.00063EPSS

Exploits0References8

CNVD•added 2018/10/16 12:0 a.m.•2 views

Google Android Kernel elevation of privilege vulnerability (CNVD-2019-01596)

Google Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA in the U.S. Kernel is one of the kernel components used in the system. Google Android suffers from elevation of privilege vulnerabilities. These vulnerabilities can be...

7.8CVSS8.2AI score0.00735EPSS

Exploits2References1

The Hacker News•added 2018/10/12 9:3 a.m.•1 views

Google Adds Control-Flow Integrity to Beef up Android Kernel Security

Google has added a new security feature to the latest Linux kernels for Android devices to prevent it against code reuse attacks that allow attackers to achieve arbitrary code execution by exploiting control-flow hijacking vulnerabilities. In code reuse attacks, attackers exploit memory corruptio...

8.2AI score

Exploits0

The Hacker News•added 2018/10/12 9:3 a.m.•347 views

Google Adds Control-Flow Integrity to Beef up Android Kernel Security

2.5AI score

Exploits0

NVD•added 2018/10/02 7:29 p.m.•11 views

CVE-2018-9515

In sdcardfscreate and sdcardfsmkdir of inode.c, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kerne...

7.8CVSS7.8AI score0.00735EPSS

Exploits2References3

NVD•added 2018/10/02 7:29 p.m.•12 views

CVE-2018-9514

In sdcardfsopen of file.c, there is a possible Use After Free due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID:...

7.8CVSS7.7AI score0.00021EPSS

Exploits0References2

NVD•added 2018/10/02 7:29 p.m.•10 views

CVE-2018-9513

In copyprocess of fork.c, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-111081202...

7.8CVSS7.8AI score0.00018EPSS

Exploits0References2

Prion•added 2018/10/02 7:29 p.m.•12 views

Double free

7.2CVSS7.7AI score0.00018EPSS

Exploits0References2

Prion•added 2018/10/02 7:29 p.m.•14 views

Design/Logic Flaw

7.2CVSS7.6AI score0.00021EPSS

Exploits0References2

Cvelist•added 2018/10/02 7:0 p.m.•9 views

CVE-2018-9514

7.7AI score0.00021EPSS

Exploits0References2

CVE•added 2018/10/02 7:0 p.m.•67 views

CVE-2018-9515

CVE-2018-9515 is a kernel vulnerability affecting the Android kernel sdcardfs code (inode.c) where memory corruption can occur due to improper locking, enabling local privilege escalation without user interaction. The issue is categorized as a high-severity Elevation of Privilege (EoP) in the 201...

7.8CVSS7.7AI score0.00735EPSS

Exploits2References3Affected Software1

Cvelist•added 2018/10/02 7:0 p.m.•12 views

CVE-2018-9513

7.8AI score0.00018EPSS

Exploits0References2

Cvelist•added 2018/10/02 7:0 p.m.•15 views

CVE-2018-9515

7.8AI score0.00735EPSS

Exploits2References3

OSV•added 2018/09/18 6:29 p.m.•1 views

UBUNTU-CVE-2018-11832

In all android releases Android for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, lack of input size validation before copying to buffer in PMIC function can lead to heap overflow...

7.8CVSS7.4AI score0.00019EPSS

Exploits0References4

UbuntuCve•added 2018/09/10 12:0 a.m.•22 views

CVE-2018-9518

In nfcllcpbuildsdreqtlv of llcpcommands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel...

7.8CVSS7.3AI score0.00069EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by