Google Android LG Component Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android LG component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13159)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13160)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13165)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

Google Android Qualcomm component elevation of privilege vulnerability (CNVD-2018-12656)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android Qualcomm component Bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

The vulnerability of the find_ep() function in the Qualcomm USB Bootloader of the Android operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the findep function in the Qualcomm USB Bootloader of the Android operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...

kernel security and bug fix update

2.6.32-696.30.1.OL6 - Update genkey bug 25599697 2.6.32-696.30.1 - x86 x86/kvm: fix CPUID7EDX word 18 mask Jan Stancek 1566893 1566899 CVE-2018-3639 2.6.32-696.29.1 - x86 x86/specctrl: Fix late microcode problem with AMD Waiman Long 1566893 1566899 CVE-2018-3639 - x86 x86/specctrl: Clean up entry...

The vulnerability of the Qualcomm XBL Android operating system’s loader allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Qualcomm XBL Android operating system’s loader is related to authentication errors during the loading of device configuration. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

CVE-2015-9215

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, and SD 810, improper input validation can cause a null pointer dereference in USB bootloader findep function...

Null pointer dereference

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9615, MDM9625, MDM9635M, and SD 810, improper input validation can cause a null pointer dereference in USB bootloader findep function...

CVE-2015-9215

CVE-2015-9215 describes a null pointer dereference in the USB bootloader find_ep() on Qualcomm Snapdragon Mobile SKUs (e.g., MDM9615, MDM9625, MDM9635M, SD 810) due to improper input validation. Affected platforms include Android builds prior to the 2018-04-05 patch level. The issue is rated CRIT...

CVE-2017-5947

An issue was discovered in OnePlus One, X, 2, 3, 3T, and 5 devices with OxygenOS 5.0 and earlier. The attacker can reboot the device into the Qualcomm Emergency Download EDL mode through ADB or by using Volume-Up when connected to USB, which in turn could allow for downgrading partitions such as...

CVE-2017-5947

An issue was discovered in OnePlus One, X, 2, 3, 3T, and 5 devices with OxygenOS 5.0 and earlier. The attacker can reboot the device into the Qualcomm Emergency Download EDL mode through ADB or by using Volume-Up when connected to USB, which in turn could allow for downgrading partitions such as...

Code injection

An issue was discovered in OnePlus One, X, 2, 3, 3T, and 5 devices with OxygenOS 5.0 and earlier. The attacker can reboot the device into the Qualcomm Emergency Download EDL mode through ADB or by using Volume-Up when connected to USB, which in turn could allow for downgrading partitions such as...

The vulnerability of the Bootloader component of Android operating systems from the CAF repository allows a hacker to trigger buffer overflows.

The vulnerability of the bootloader component of Android operating systems from the CAF repository arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor, operating remotely, to trigger buffer overflows by manipulating data relate...

CVE-2017-13247

In the Pixel 2 bootloader, there is a missing permission check which bypasses carrier bootloader lock. This could lead to local elevation of privileges with user execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID:...

Design/Logic Flaw

In the Pixel 2 bootloader, there is a missing permission check which bypasses carrier bootloader lock. This could lead to local elevation of privileges with user execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID:...

CVE-2017-13247

In the Pixel 2 bootloader, there is a missing permission check which bypasses carrier bootloader lock. This could lead to local elevation of privileges with user execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID:...

CVE-2017-13247

CVE-2017-13247 affects the Pixel 2 bootloader (Android). The issue is a missing permission check in the bootloader that bypasses the carrier bootloader lock, enabling local elevation of privileges with user-privilege requirements. Exploitation is described as local with no user interaction requir...

Google Android HTC Component Local Elevation of Privilege Vulnerability

Android on Google Pixel 2 is a Linux-based open source operating system for the Google Pixel 2 developed by Google and the Open Handset Alliance OHA.Bootloader is one of the bootloader programs. Bootloader in Android on Google Pixel 2 devices suffers from a local elevation of privilege...