Lucene search
K

1901 matches found

0day.today
0day.today
added 2017/01/26 12:0 a.m.36 views

Google Android - pm_qos KASLR Bypass Vulnerability

Exploit for Android platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=971 The "pmqos" module exposes an interface to kernel space for specifying QoS dependencies. In order to aid in debugging this interface, the module exposes a "debugfs" interface,...

7AI score
Exploits0
CNVD
CNVD
added 2017/01/13 12:0 a.m.4 views

Google Android MediaTek Drivers Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, and MediaTek Driver is a MediaTek driver component used in one of MediaTek's devices. An elevation of privilege vulnerability exists in the MediaTek application in Android version...

9.3CVSS7.8AI score0.00601EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/13 12:0 a.m.5 views

Google Android Information Disclosure Vulnerability (CNVD-2017-00513)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. Google Android has an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

4.7CVSS6.2AI score0.00771EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/12 12:0 a.m.3 views

Unspecified vulnerability in Google Android Qualcomm component (CNVD-2017-02544)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. Google Android has an unspecified vulnerability. An attacker can exploit the vulnerability to perfo...

10CVSS6.9AI score0.02214EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/12 12:0 a.m.2 views

Google Android Products Qualcomm Bootloader Elevation of Privilege Vulnerability (CNVD-2017-00583)

Google Android is an operating system developed by Google for smartphones. Google Android Products Qualcomm Bootloader has a security vulnerability that allows remote attackers to exploit the vulnerability via a specially crafted application that can elevate privileges...

9.3CVSS7AI score0.00601EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/12 12:0 a.m.7 views

Google Android Products Qualcomm Bootloader Elevation of Privilege Vulnerability

Google Android is an operating system developed by Google for smartphones. Google Android Products Qualcomm Bootloader has a security vulnerability that allows remote attackers to exploit the vulnerability via a specially crafted application that can elevate privileges...

9.3CVSS7AI score0.00601EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/12 12:0 a.m.4 views

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2017-00524)

Google Android is an operating system developed by Google for smartphones. A security vulnerability in the Google Android MediaTek component allows remote attackers to exploit the vulnerability to elevate privileges through specially crafted applications...

7.6CVSS6.9AI score0.00609EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/06 12:0 a.m.1 views

Google Android Remote Code Execution Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A remote code execution vulnerability exists in Google Android, which can be exploited by an attacker to execute arbitrary code in the context of the mediaserver process. A failed...

9.3CVSS9.4AI score0.00904EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/06 12:0 a.m.2 views

Unspecified Vulnerability in Google Android Qualcomm Component

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. Google Android has an unspecified vulnerability. An attacker can exploit the vulnerability to perfo...

10CVSS6.9AI score0.01728EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/06 12:0 a.m.2 views

Google Android Qualcomm Video Driver Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in Google Android Qualcomm Video Driver, which can be exploited by an attacker to enable a malicious application to execute arbitrar...

9.3CVSS7.8AI score0.00677EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2016/12/06 12:0 a.m.41 views

Google Android - 'IOMXNodeInstance::enableNativeBuffers' Unchecked Index

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=932 The code in IOMXNodeInstance.cpp that handles enableNativeBuffers uses portindex without validation, leading to writing the dword value 0 or 1 at an attacker controlled offset from the IOMXNodeInstance structure. The vulnerable...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/11/28 12:0 a.m.340 views

Google Android - 'BadKernel' Remote Code Execution

function gc forvar i=0;i0.toString16; function log var str = ""; forvar i=0;i"; console.logstr; document.writestr; function setaccessaddressaddress controllerdv.setUint3234,address,true; controllerdv.setUint3244,0x40000000,true; function getdateviewaddress setaccessaddressaddress;...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/11/28 12:0 a.m.16 views

Google Android - BadKernel Remote Code Execution

Google Android - BadKernel Remote Code Execution function gc forvar i=0;i0.toString16; function log var str = ""; forvar i=0;i"; console.logstr; document.writestr; function setaccessaddressaddress controllerdv.setUint3234,address,true; controllerdv.setUint3244,0x40000000,true; function...

0.8AI score
Exploits0
CNVD
CNVD
added 2016/11/11 12:0 a.m.4 views

Google Android Qualcomm Bus Driver Elevation of Privilege Vulnerability

Google Nexus 5X and others are smart devices from Google, Inc. in the U.S. Qualcomm bus is one of the Qualcomm bus components. An elevation of privilege vulnerability exists in Qualcomm bus in Google products. An attacker can exploit the vulnerability to execute arbitrary code in the kernel conte...

7.8CVSS7.9AI score0.00638EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.4 views

Google Android 'Qualcomm' Component Has Unspecified Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An unspecified vulnerability exists in the Google Android 'Qualcomm' component. An attacker can exploit the vulnerability to perform unauthorized operations. This could facilitate...

10CVSS6.7AI score0.00777EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.15 views

Google Android Qualcomm Component Information Disclosure Vulnerability (CNVD-2016-11051)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. Qualcomm is one of the Qualcomm components used in Qualcomm devices. An information disclosure vulnerability exists in the Google Android Qualcomm component. An attacke...

5.5CVSS6.2AI score0.00367EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/09 12:0 a.m.4 views

Unspecified vulnerability in Google Android 'Qualcomm' component (CNVD-2016-11032)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An unspecified vulnerability exists in the Google Android 'Qualcomm' component. An attacker can exploit the vulnerability to perform unauthorized operations. This could facilitate...

10CVSS6.7AI score0.02726EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2016/09/14 12:0 a.m.34 views

Google Android - getpidcon Usage binder Service Replacement Race Condition

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=851 This is very similar to forshaw's bug , . The servicemanager, when determining whether the sender of a binder transaction is authorized to register a service via SVCMGRADDSERVICE, looks up the sender's SELinux context using...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/09/08 12:0 a.m.24 views

Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow

Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=840 There's an inconsistency between the way that the two functions in libutils/Unicode.cpp handle invalid surrogate pairs in UTF16, resulting in a mismatch...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/09/08 12:0 a.m.50 views

Google Android - libutils UTF16 to UTF8 Conversion Heap Buffer Overflow

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=840 There's an inconsistency between the way that the two functions in libutils/Unicode.cpp handle invalid surrogate pairs in UTF16, resulting in a mismatch between the size calculated by utf16toutf8length and the number of bytes...

7.4AI score
Exploits0
Rows per page
Query Builder