Lucene search
K

158 matches found

OSV
OSV
added 2017/09/08 8:29 p.m.4 views

CVE-2017-0761

A remote code execution vulnerability in the Android media framework libavc. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-38448381...

7.8CVSS6.3AI score0.01323EPSS
Exploits0References2
OSV
OSV
added 2017/07/17 1:18 p.m.2 views

CVE-2016-10398

Android 6.0 has an authentication bypass for attackers with root and physical access. Cryptographic authentication tokens AuthTokens used by the Trusted Execution Environment TEE are protected by a weak challenge. This allows adversaries to replay previously captured responses and use the TEE...

6.2CVSS5.8AI score0.0019EPSS
Exploits0References1
OSV
OSV
added 2017/07/06 8:29 p.m.3 views

CVE-2017-0674

A remote code execution vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34231163...

7.8CVSS6.3AI score0.01096EPSS
Exploits0References2
CNVD
CNVD
added 2017/07/03 12:0 a.m.3 views

Multiple Lenovo VIBE phones privilege access vulnerability

Android 6.0 Marshmallow is a Linux-based open source operating system developed by Google and the Open Handset Alliance OHA in the U.S. The Lenovo A2010-a and other smartphone products from China's Lenovo use the Android 6.0 Marshmallow operating system. The Lenovo A2010-a is a smartphone from...

6.9CVSS7AI score0.00143EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/03 12:0 a.m.2 views

Elephone P9000 Lock Screen Lock Bypass Vulnerability

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, and the Elephone P9000 is a smartphone from China's Elephone Corporation that runs the Android operating system. lockscreen is one of the screen-locking component. A security vulnerabilit...

7.2CVSS6.8AI score0.00335EPSS
Exploits0References1
OSV
OSV
added 2017/06/30 4:29 p.m.3 views

CVE-2017-10709

The lockscreen on Elephone P9000 devices running Android 6.0 allows physically proximate attackers to bypass a wrong-PIN lockout feature by pressing backspace after each PIN guess...

6.8CVSS5.8AI score0.00335EPSS
Exploits0References5
OSV
OSV
added 2017/05/12 3:29 p.m.4 views

CVE-2017-0587

A remote code execution vulnerability in libmpeg2 in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the...

7.8CVSS6.4AI score0.01338EPSS
Exploits0References3
OSV
OSV
added 2017/05/12 3:29 p.m.4 views

CVE-2017-0593

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to obtain access to custom permissions. This issue is rated as High because it is a general bypass for operating system protections that isolate application data from other applications...

7.8CVSS5.8AI score0.00426EPSS
Exploits0References2
OSV
OSV
added 2017/05/12 3:29 p.m.2 views

CVE-2017-0599

A remote denial of service vulnerability in libhevc in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1...

5.5CVSS5.8AI score0.00646EPSS
Exploits0References3
OSV
OSV
added 2017/05/12 3:29 p.m.4 views

UBUNTU-CVE-2017-0593

An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to obtain access to custom permissions. This issue is rated as High because it is a general bypass for operating system protections that isolate application data from other applications...

7.8CVSS7.1AI score0.00426EPSS
Exploits0References3
OSV
OSV
added 2017/05/12 3:29 p.m.3 views

UBUNTU-CVE-2017-0592

A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution...

7.8CVSS7.7AI score0.01338EPSS
Exploits0References3
OSV
OSV
added 2017/04/07 10:59 p.m.4 views

UBUNTU-CVE-2017-0557

An information disclosure vulnerability in libmpeg2 in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access data without permission. Product: Android. Versions: 6.0, 6.0.1, 7.0,...

5.5CVSS5.8AI score0.00597EPSS
Exploits0References4
OSV
OSV
added 2017/04/07 10:59 p.m.3 views

CVE-2017-0556

An information disclosure vulnerability in libmpeg2 in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access data without permission. Product: Android. Versions: 6.0, 6.0.1, 7.0,...

5.5CVSS5.8AI score0.00524EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.3 views

CVE-2017-0487

A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID:...

5.5CVSS7.3AI score0.00759EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.4 views

CVE-2017-0467

A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver...

7.8CVSS6.4AI score0.01422EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.3 views

CVE-2017-0495

An information disclosure vulnerability in Mediaserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 6.0, 6.0.1, 7.0,...

5.5CVSS7.3AI score0.00421EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.5 views

CVE-2017-0490

An elevation of privilege vulnerability in Wi-Fi could enable a local malicious application to delete user data. This issue is rated as Moderate because it is a local bypass of user interaction requirements that would normally require either user initiation or user permission. Product: Android...

5.5CVSS7.3AI score0.00448EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.4 views

CVE-2017-0470

A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver...

7.8CVSS7.8AI score0.01422EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.3 views

CVE-2017-0472

A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver...

7.8CVSS7.8AI score0.01422EPSS
Exploits0References4
OSV
OSV
added 2017/03/08 1:59 a.m.3 views

CVE-2017-0485

A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID:...

5.5CVSS7.3AI score0.00616EPSS
Exploits0References4
Rows per page
Query Builder