Lucene search
K

280 matches found

Prion
Prion
added 2019/09/27 7:15 p.m.16 views

Information disclosure

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112552517...

4.3CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/09/27 7:15 p.m.14 views

Information disclosure

In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112326216...

4.3CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/09/27 7:15 p.m.16 views

Information disclosure

In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111764725...

4.3CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/09/27 7:15 p.m.15 views

Information disclosure

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112859934...

4.3CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/27 6:5 p.m.15 views

CVE-2019-9420

In libhevc, there is a possible out of bounds read due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111272481...

6.9AI score0.00635EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/09/27 6:5 p.m.19 views

CVE-2019-9406

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112552517...

6.6AI score0.00732EPSS
Exploits0References1
CVE
CVE
added 2019/09/27 6:5 p.m.64 views

CVE-2019-9420

CVE-2019-9420 describes an out-of-bounds read in the Android media stack (libhevc) caused by an integer overflow. This can lead to a remote denial-of-service on Android 10 devices, with exploitation requiring user interaction. The available connected documents confirm the issue location (libhevc)...

6.5CVSS6.8AI score0.00635EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/09/27 6:5 p.m.43 views

CVE-2019-9409

CVE-2019-9409 affects the Android 10 media processing stack (libhevc). The issue is an information-disclosure vulnerability caused by uninitialized data, enabling remote information disclosure with no execution privileges required. Exploitation requires user interaction. The connected documents r...

6.5CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/27 6:5 p.m.17 views

CVE-2019-9409

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112272091...

6.6AI score0.00732EPSS
Exploits0References1
CVE
CVE
added 2019/09/27 6:5 p.m.86 views

CVE-2019-9406

CVE-2019-9406 affects libhevc in Android 10. The vulnerability enables information disclosure via uninitialized data within the Media/Video processing path, potentially allowing remote information disclosure without extra execution privileges. Exploitation is described as requiring user interacti...

6.5CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/09/27 6:5 p.m.41 views

CVE-2019-9334

CVE-2019-9334 concerns the Android 10 ecosystem where a vulnerability in the Media/Library stack (libhevc) allows information disclosure via uninitialized data. The issue affects Android 10 and is described as enabling remote information disclosure with no additional execution privileges; exploit...

6.5CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/27 6:5 p.m.28 views

CVE-2019-9318

In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111764725...

6.6AI score0.00732EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/09/27 6:5 p.m.17 views

CVE-2019-9334

In libhevc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112859934...

6.6AI score0.00732EPSS
Exploits0References1
CVE
CVE
added 2019/09/27 6:5 p.m.40 views

CVE-2019-9318

CVE-2019-9318: A missing variable initialization in libhevc on Android-10 (Android 10) can cause information disclosure. Exploitation requires user interaction; no remote code execution is stated. Affected component: libhevc in Android 10, with CVE details echoed across NVD/Red Hat/CVEs. Mitigati...

6.5CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/09/27 6:5 p.m.55 views

CVE-2019-9315

CVE-2019-9315 affects the Android 10 Media Framework component libhevc, where a missing variable initialization creates a condition for information disclosure. The issue could permit remote disclosure without additional execution privileges; exploitation requires user interaction. The CVSS data i...

6.5CVSS6.5AI score0.00732EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/27 6:5 p.m.31 views

CVE-2019-9315

In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112326216...

6.6AI score0.00732EPSS
Exploits0References1
ossfuzz
ossfuzz
added 2019/09/22 9:37 p.m.18 views

libhevc:hevc_dec_fuzzer: Stack-use-after-return in ihevcd_process_thread

Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5176835272343552 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Stack-use-after-return RE...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/09/20 11:4 p.m.15 views

libhevc:hevc_dec_fuzzer: Heap-use-after-free in ihevcd_jobq_lock

Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5093765538119680 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Heap-use-after-free READ ...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/09/19 5:52 p.m.17 views

libhevc:hevc_dec_fuzzer: Stack-use-after-return in ihevcd_process_thread

Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5728826448936960 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasanlibhevc Platform Id: linux Crash Type: Stack-use-after-return READ 8...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2019/09/17 9:16 p.m.14 views

libhevc:hevc_dec_fuzzer: Heap-buffer-overflow in ihevcd_get_mv_ctb

Project: https://android.googlesource.com/platform/external/libhevc Detailed Report: https://oss-fuzz.com/testcase?key=5703717080268800 Project: libhevc Fuzzing Engine: libFuzzer Fuzz Target: hevcdecfuzzer Job Type: libfuzzerasani386libhevc Platform Id: linux Crash Type: Heap-buffer-overflow WRIT...

6.4AI score
Exploits0Affected Software1
Rows per page
Query Builder