27 matches found
Information disclosure
In randomgetbytes of random.c, there is a possible degradation of randomness due to an insecure default value. This could lead to local information disclosure via an insecure wireless connection with no additional execution privileges needed. User interaction is not needed for exploitation...
Out-of-bounds
In btifdmdatacopy of btifcore.cc, there is a possible out of bounds write due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1...
CVE-2018-9585
The CVE-2018-9585 issue affects Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9 in the NFC subsystem. Root cause: a missing bounds check in nfc_ncif_proc_get_routing within nfc_ncif.cc leads to an out-of-bounds write. Impact: local elevation of privilege with no additional execution privileges needed;...
CVE-2018-7910
CVE-2018-7910 applies to several Huawei smartphones (e.g., ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C) running Android 8.x with builds such as 8.0.0.118D(C00/ C01), 8.0.0.127/128/137(C432). The flaw is an authentication bypass that lets an attacker replace the boot/startup program when t...
Out-of-bounds
In smpprocencinfo of smpact.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...
CVE-2018-9501
CVE-2018-9501 describes a vulnerability in the Android SetupWizard that allows a Factory Reset Protection bypass via a permissions bypass, enabling local escalation of privilege with no additional execution privileges and no user interaction required. Affected Android versions include 7.0, 7.1.1,...
Android 8 on the security patch risk assessment-vulnerability warning-the black bar safety net
This month, a total of 1 0 5 a security vulnerability,wherein Critical: 1 to 3 High: 7 to 9 Moderate13 a Wherein: belongs to the Aosp section of a 2 6, the drive and the kernel of a 7 9 one. The following is the 7 month the number of vulnerabilities comparison chart: ! ! Vulnerability distributio...