Lucene search
K

31 matches found

CVE
CVE
added 2017/09/08 8:0 p.m.57 views

CVE-2017-0779

CVE-2017-0779 is an information-disclosure vulnerability in Android’s media framework (audioflinger) affecting Android versions 4.4.4, 5.0.2, 5.1.1, 6.0–6.0.1, 7.0, 7.1.1, 7.1.2 (Android ID A-38340117). Public details come from NVD: CVSS2 vector AV:N/AC:M/Au:N/C:P/I:N/A:N (base 4.3) and CVSS3 vec...

5.5CVSS5.8AI score0.00366EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/09/08 12:0 a.m.5 views

Google Android Media Framework Information Disclosure Vulnerability (CNVD-2017-31355)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, of which Media framework audioflinger is a multimedia audio system service. An information disclosure vulnerability exists in Media frameworkaudioflinger in Android. An attacker ca...

5.5CVSS5.5AI score0.00366EPSS
Exploits0References1
OSV
OSV
added 2016/10/10 10:59 a.m.3 views

CVE-2016-3924

services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 does not validate EFFECTCMDSETPARAM and EFFECTCMDSETPARAMDEFERRED commands, which allows attackers to obtain sensitive information...

5.5CVSS5.8AI score0.00454EPSS
Exploits0References3
OSV
OSV
added 2016/10/10 10:59 a.m.7 views

UBUNTU-CVE-2016-3924

services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 does not validate EFFECTCMDSETPARAM and EFFECTCMDSETPARAMDEFERRED commands, which allows attackers to obtain sensitive information...

5.5CVSS6.4AI score0.00454EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2016/09/07 12:0 a.m.5 views

The vulnerability of the Android operating system, which allows a hacker to increase their privileges

The vulnerability in the services/audioflinger/Effects.cpp file of the Android operating system’s media server does not check the response size for the AudioFlinger command. Exploiting this vulnerability could allow a local attacker to increase their privileges through a specially created...

4.6CVSS7.2AI score0.002EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2016/08/05 8:59 p.m.19 views

CVE-2016-3826

services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 does not validate the reply size for an AudioFlinger effect command, which allows attackers to gain privileges via a crafted application, aka internal bu...

7.8CVSS7.6AI score0.002EPSS
Exploits0References3
OSV
OSV
added 2016/08/05 8:59 p.m.1 views

CVE-2016-3826

services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 does not validate the reply size for an AudioFlinger effect command, which allows attackers to gain privileges via a crafted application, aka internal bu...

7.8CVSS7.3AI score0.002EPSS
Exploits0References3
OSV
OSV
added 2016/08/05 8:59 p.m.2 views

UBUNTU-CVE-2016-3826

services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 does not validate the reply size for an AudioFlinger effect command, which allows attackers to gain privileges via a crafted application, aka internal bu...

7.8CVSS7.1AI score0.002EPSS
Exploits0References4
Cvelist
Cvelist
added 2016/08/05 8:0 p.m.23 views

CVE-2016-3826

services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 does not validate the reply size for an AudioFlinger effect command, which allows attackers to gain privileges via a crafted application, aka internal bu...

7.6AI score0.002EPSS
Exploits0References3
CVE
CVE
added 2016/08/05 8:0 p.m.49 views

CVE-2016-3826

The CVE-2016-3826 advisory affects Android’s Mediaserver component, specifically the AudioFlinger path (services/audioflinger/Effects.cpp). The root cause is that the reply size for an AudioFlinger effect command is not validated, enabling a crafted application to escalate privileges within the d...

7.8CVSS7.5AI score0.002EPSS
Exploits0References3Affected Software1
myhack58
myhack58
added 2016/04/06 12:0 a.m.13 views

Android mention the right Vulnerability, CVE-2 0 1 4-7 9 2 0, CVE-2 0 1 4-7 9 2 1 Analysis-vulnerability warning-the black bar safety net

This is the Android mediaserver mention the right vulnerability, use CVE-2 0 1 4-7 9 2 0 and CVE-2 0 1 4-7 9 2 1 to achieve extraction of the right, from 0 permissions mentioned media rights, wherein the CVE-2 0 1 4-7 9 2 1 effects Android 4.0.3 and later versions, the CVE-2 0 1 4-7 9 2 0 affect...

0.6AI score
Exploits0
Rows per page
Query Builder