Lucene search
K

45 matches found

OSV
OSV
added 2018/10/02 7:29 p.m.5 views

CVE-2018-9499

In readVector of iCrypto.cpp, there is a possible invalid read due to uninitialized data. This could lead to local information disclosure from the DRM server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0...

5.5CVSS5.9AI score0.00304EPSS
Exploits1References4
NVD
NVD
added 2018/10/02 7:29 p.m.18 views

CVE-2018-9496

In ixheaacdrealsynthfftp3 of ixheaacdesbrfft.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-9.0 Androi...

9.3CVSS8AI score0.01822EPSS
Exploits0References4
NVD
NVD
added 2018/10/02 7:29 p.m.18 views

CVE-2018-9492

In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References3
NVD
NVD
added 2018/10/02 7:29 p.m.24 views

CVE-2018-9490

In CollectValuesOrEntriesImpl of elements.cc, there is possible remote code execution due to type confusion. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0...

9.3CVSS8.2AI score0.01443EPSS
Exploits0References4
Prion
Prion
added 2018/10/02 7:29 p.m.16 views

Information disclosure

In readVector of iCrypto.cpp, there is a possible invalid read due to uninitialized data. This could lead to local information disclosure from the DRM server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0...

4.9CVSS5AI score0.00304EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.17 views

Out-of-bounds

In mcaccbhdlreq of mcacact.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

6.1CVSS6.1AI score0.00571EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.15 views

Out-of-bounds

In rfcprocessmxmessage of rfctsframes.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0...

7.8CVSS7AI score0.02625EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.17 views

Design/Logic Flaw

In the SetupWizard, there is a possible Factory Reset Protection bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1...

7.2CVSS7.5AI score0.00224EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.20 views

Out-of-bounds

In rfcprocessmxmessage of rfctsframes.cc, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Andro...

6.1CVSS6.1AI score0.01208EPSS
Exploits0References8Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.14 views

Out-of-bounds

In impeg2fmtconvyuv420ptoyuv420spuvav8 of impeg2formatconv.s there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions:...

9.3CVSS7.9AI score0.01568EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.14 views

Out-of-bounds

In btaavprocmetacmd of btaavact.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

6.1CVSS6.1AI score0.00571EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.12 views

Out-of-bounds

In smpprocmasterid of smpact.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

6.1CVSS6.1AI score0.00729EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.27 views

Security feature bypass

In ipSecSetEncapSocketOwner of XfrmController.cpp, there is a possible failure to initialize a security feature due to uninitialized data. This could lead to local denial of service of IPsec on sockets with no additional execution privileges needed. User interaction is not needed for exploitation...

4.9CVSS5.4AI score0.00217EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2018/10/02 7:29 p.m.14 views

Out-of-bounds

In avrcmsgcback of avrcapi.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7...

6.1CVSS6.1AI score0.00673EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2018/10/02 7:0 p.m.24 views

CVE-2018-9506

In avrcmsgcback of avrcapi.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7...

6.2AI score0.00673EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/10/02 7:0 p.m.16 views

CVE-2018-9492

In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0...

7.7AI score0.00188EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/10/02 7:0 p.m.23 views

CVE-2018-9502

In rfcprocessmxmessage of rfctsframes.cc, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Andro...

6.2AI score0.01208EPSS
Exploits0References5
Cvelist
Cvelist
added 2018/10/02 7:0 p.m.19 views

CVE-2018-9501

In the SetupWizard, there is a possible Factory Reset Protection bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1...

7.7AI score0.00224EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/10/02 7:0 p.m.23 views

CVE-2018-9497

In impeg2fmtconvyuv420ptoyuv420spuvav8 of impeg2formatconv.s there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions:...

8AI score0.01568EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/10/02 7:0 p.m.22 views

CVE-2018-9510

In smpprocencinfo of smpact.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

6.2AI score0.00729EPSS
Exploits0References3
Rows per page
Query Builder