EUVD-2017-15017

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2016-3850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-08-05 on Nexus 5, 5X, 6P, and 7 2013 devices allows attackers to gain...

Google Pixel 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to a flaw in the ABL component that can be exploited by an attacker to escalate privileges...

Fastboot Fuzzing

TL;DR The Fastboot protocol can often have hidden commands Those commands can do interesting things Conventionally they’re found by reverse engineering Cant find a copy of the firmware? Guess the commands A custom implementation of the protocol enables fuzzing via dictionary or brute force A simp...

Google Android Bootloader Component Privilege Permission and Access Control Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Bootloader is a bootloader. A security vulnerability exists in the Bootloader component in Android on Pixel devices. A local attacker can exploit the vulnerability to gai...

Google Android Bootloader Buffer Overflow Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Bootloader is a bootloader. A buffer overflow vulnerability exists in Bootloader in Android. An attacker could exploit this vulnerability to execute code or cause a denia...

Google Android Bootloader Integer Overflow Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Bootloader is a bootloader. An integer overflow vulnerability exists in Bootloader in Android. An attacker can exploit this vulnerability to cause a buffer overflow...

Google Android MediaTek component elevation of privilege vulnerability (CNVD-2018-13158)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An elevation of privilege vulnerability exists in the Google Android MediaTek component bootloader. An attacker can exploit this vulnerability to achieve elevation of privilege...

CVE-2017-5947

An issue was discovered in OnePlus One, X, 2, 3, 3T, and 5 devices with OxygenOS 5.0 and earlier. The attacker can reboot the device into the Qualcomm Emergency Download EDL mode through ADB or by using Volume-Up when connected to USB, which in turn could allow for downgrading partitions such as...

Code injection

An issue was discovered in OnePlus One, X, 2, 3, 3T, and 5 devices with OxygenOS 5.0 and earlier. The attacker can reboot the device into the Qualcomm Emergency Download EDL mode through ADB or by using Volume-Up when connected to USB, which in turn could allow for downgrading partitions such as...

Google Android Huawei bootloader elevation of privilege vulnerability

Android is a free and open-source Linux-based operating system for mobile devices such as smartphones and tablets, led and developed by Google Inc. and the Open Handset Alliance. A security vulnerability exists in the Android Huawei bootloader that allows an attacker to exploit the vulnerability ...

Google Android bootloader local information disclosure vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. Google Android suffers from a local information disclosure vulnerability. An attacker can exploit the vulnerability to obtain potentially sensitive information...

Google Android bootloader local information disclosure vulnerability (CNVD-2017-00182)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. Google Android suffers from a local information disclosure vulnerability. An attacker can exploit the vulnerability to obtain potentially sensitive information...