Linux Distros Unpatched Vulnerability : CVE-2017-0485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated ...

Linux Distros Unpatched Vulnerability : CVE-2017-0466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and da...

Linux Distros Unpatched Vulnerability : CVE-2016-6773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the ih264d decoder in Mediaserver could enable a local malicious application to access data outside of its permission...

CVE-2017-18658

An issue was discovered on Samsung mobile devices with M6.0 software. The multiwindowfacade API allows attackers to cause a NullPointerException and system halt via an attempted screen touch of a non-existing display. The Samsung ID is SVE-2017-9383 August 2017...

CVE-2016-11027

An issue was discovered on Samsung mobile devices with M6.0 software. In the Shade Locked state, a physically proximate attacker can read notifications on the lock screen. The Samsung ID is SVE-2016-7132 December 2016...

Xiaomi 5S Plus Access Control Error Vulnerability

The Xiaomi 5S Plus is a smartphone from Chinese company Xiaomi Technology Xiaomi. An access control error vulnerability exists in the com.miui.powerkeeper app in Xiaomi 5S Plus build fingerprint: Xiaomi/natrium/natrium:6.0.1/MXB48T/7.1.5:user/release-keys. The vulnerability stems from the network...

CVE-2018-9455

In sdpuextractattrseq of sdputils.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0...

CVE-2018-9446

In smpbrstatemachineevent of smpbrmain.cc, there is a possible out of bounds write due to memory corruption. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0...

Google Android Media framework denial of service vulnerability (CNVD-2018-18774)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. Media framework is one of the frameworks used for multimedia development. A denial of service vulnerability exists in Media framework in Android versions 6.0 and 6.0.1. An attacker...

Google Android Media framework (libhevc) Denial of Service Vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA, with the Media framework libhevc as a decoding library for multimedia development. libhevc is one of the hevc decoding...

Samsung Mobile Device Email Application Cross-Site Scripting Vulnerability

Samsung mobile devices are smart mobile devices released by Samsung in South Korea.Android M is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA.Email application is one of the email applications. Email application is one of the email...

Samsung mobile device sensorhub binder service buffer error vulnerability

Samsung mobile devices are smart mobile devices released by Samsung in South Korea. android M and N are different versions of the Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA. sensorhub is a sensor and binder service. The binder service is one of...

CVE-2017-0877

A remote code execution vulnerability in the Android media framework libavc. Product: Android. Versions: 6.0. Android ID A-66372937...

Google Android Media framework (libavc) remote code execution vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. media framework libavc is one of the frameworks used for multimedia development. A remote code execution vulnerability exists in Media framework libavc in Android version 6.0. A...

CVE-2017-0780

A denial of service vulnerability in the Android runtime android messenger. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37742976...

CVE-2017-0763

A remote code execution vulnerability in the Android media framework libhevc. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62534693...

CVE-2017-0674

A remote code execution vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34231163...

Multiple Lenovo VIBE phones privilege access vulnerability

Android 6.0 Marshmallow is a Linux-based open source operating system developed by Google and the Open Handset Alliance OHA in the U.S. The Lenovo A2010-a and other smartphone products from China's Lenovo use the Android 6.0 Marshmallow operating system. The Lenovo A2010-a is a smartphone from...

Elephone P9000 Lock Screen Lock Bypass Vulnerability

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, and the Elephone P9000 is a smartphone from China's Elephone Corporation that runs the Android operating system. lockscreen is one of the screen-locking component. A security vulnerabilit...

CVE-2017-10709

The lockscreen on Elephone P9000 devices running Android 6.0 allows physically proximate attackers to bypass a wrong-PIN lockout feature by pressing backspace after each PIN guess...