Lucene search
K

86 matches found

bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.12 views

The vulnerability of the Android CAF-release operating system, caused by the operation going beyond buffer boundaries in memory, allows a hacker to trigger a memory leak.

The vulnerability of the Android CAF-release operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to trigger a memory leak when a connection is denied for the clientHello message, which is a cryptographi...

10CVSS8AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the system call in the TrustZone of the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone-based system call in the Android CAF-release operating system is related to pointer swapping errors. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the Android operating system from the CAF repository exists due to memory buffer cleanup errors, allowing attackers to cause memory corruption.

The vulnerability of the Linux operating system’s Android kernel from the CAF repository involves the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause memory corruption by using an incorrect length for memory buffer...

10CVSS8.2AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.11 views

The vulnerability of the Keymaster component of the Android operating system from the CAF repository allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Keymaster component of the Android operating system from the CAF repository is related to the lack of checks on buffer size. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS8.1AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the UE component in the Android CAF-release operating system allows a perpetrator to compromise privacy, integrity, and accessibility.

The vulnerability of the UE component in the Android CAF-release operating system is related to positioning errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information when the UE driver sends unprotected...

10CVSS7.8AI score0.00976EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the Android operating system from the CAF repository exists due to errors in pointer assignment, allowing attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Android operating system from the CAF repository is related to pointer assignment errors. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information under conditions of memory shortage...

10CVSS7.8AI score0.00964EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.6 views

The vulnerability of the Android CAF-release operating system, related to configuration errors, allows a perpetrator to compromise privacy, integrity, and accessibility.

The vulnerability of the Android CAF-release operating system is related to configuration errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information when loading the external application QTEE...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the Android CAF-release operating system, which stems from insufficient validation of input data, allows attackers to bypass proper validation of supervisor function arguments.

The vulnerability of the Android CAF-release operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a remote attacker to improperly validate the arguments of the supervisor function...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the Android CAF-release operating system, due to insufficient validation of input data, allows a perpetrator to cause damage to the protected file system.

The vulnerability of the Android CAF-release operating system exists due to insufficient checks on input data. Exploiting this vulnerability can allow a remote attacker to cause damage to the protected file system...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the Android CAF-release operating system, related to security configuration errors, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Android CAF-release operating system is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information by having the UE component respond to the...

10CVSS7.8AI score0.00976EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the Android CAF-release operating system, related to the use of memory after it is freed, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Android CAF-release operating system relates to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to create a situation where, when the mdssfbcopydestscalerdata function is called, the dsdatai.scale variable may still point to ...

10CVSS7.9AI score0.00829EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.5 views

The vulnerability of the Android CAF-release operating system’s supervisor allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Android CAF-release operating system’s supervisor is caused by a numerical overflow condition. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.8AI score0.00877EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.7 views

The vulnerability of the LTE component of the Android CAF build’s operating system allows a hacker to use pointer offsets beyond their permissible limits.

The vulnerability of the LTE component of the Android CAF build is related to pointer swapping errors. Exploiting this vulnerability allows a remote attacker to use the offset of the pointer beyond its permissible values...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
bdu_fstec
bdu_fstec
added 2017/09/01 12:0 a.m.6 views

The vulnerability of the system call in the TrustZone of the Android CAF-release operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone system call in the Android CAF-release operating system arises from the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS8.2AI score0.00836EPSS
Exploits0References3
nvd
nvd
added 2017/08/18 7:29 p.m.15 views

CVE-2017-9685

In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in a WLAN driver can lead to a Use After Free condition...

9.3CVSS7.7AI score0.00487EPSS
Exploits0References2
cvelist
cvelist
added 2017/08/18 7:0 p.m.21 views

CVE-2017-9679

In all Qualcomm products with Android releases from CAF using the Linux kernel, if a userspace string is not NULL-terminated, kernel memory contents can leak to system logs...

7AI score0.00519EPSS
Exploits0References2
nvd
nvd
added 2017/08/18 6:29 p.m.16 views

CVE-2016-10392

In all Qualcomm products with Android releases from CAF using the Linux kernel, a driver can potentially leak kernel memory...

10CVSS7.7AI score0.00964EPSS
Exploits0References3
nvd
nvd
added 2017/08/18 6:29 p.m.18 views

CVE-2017-8255

In all Qualcomm products with Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in boot...

9.3CVSS7.5AI score0.00483EPSS
Exploits0References2
nvd
nvd
added 2017/08/18 6:29 p.m.20 views

CVE-2015-9070

In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer over-read vulnerability exists in a TrustZone syscall...

10CVSS9AI score0.00836EPSS
Exploits0References2
nvd
nvd
added 2017/08/18 6:29 p.m.23 views

CVE-2016-10343

In all Qualcomm products with Android releases from CAF using the Linux kernel, sSL handshake failure with ClientHello rejection results in memory leak...

10CVSS9AI score0.00836EPSS
Exploits0References2
Rows per page
Query Builder