Lucene search
K

7 matches found

OSV
OSV
added 2021/01/01 12:0 a.m.36 views

ASB-A-168802990

In avrcparsvendorcmd of avrcparstg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS9.5AI score0.03057EPSS
Exploits0References2
CVE
CVE
added 2020/12/15 3:58 p.m.44 views

CVE-2020-27021

CVE-2020-27021 is an Android 11 vulnerability documented in the Pixel security bulletin under the System component with type “ID” (Information disclosure) and moderate severity. The issue is described elsewhere as an out-of-bounds read in avrc_ctrl_pars_vendor_cmd of avrc_pars_tg.cc, enabling loc...

4.4CVSS4.9AI score0.00145EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/04/04 4:29 p.m.17 views

CVE-2017-13267

In avrcparsvendorcmd of avrcparstg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0...

10CVSS9.2AI score0.0165EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/04/04 4:0 p.m.25 views

CVE-2017-13281

In avrcparsbrowsingcmd of avrcparstg.cc, there is a possible stack buffer overflow due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1...

9.5AI score0.01793EPSS
Exploits0References1
CVE
CVE
added 2018/04/04 4:0 p.m.55 views

CVE-2017-13267

CVE-2017-13267 affects Android's avrc_pars_vendor_cmd in avrc_pars_tg.cc, with a stack corruption risk due to a missing bounds check. The vulnerability enables remote escalation of privilege with no user interaction, as described in the NVD entry (CVE-2017-13267) and reflected in the Android Secu...

10CVSS8.7AI score0.0165EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/04/04 4:0 p.m.18 views

CVE-2017-13267

In avrcparsvendorcmd of avrcparstg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0...

9.2AI score0.0165EPSS
Exploits0References1
CVE
CVE
added 2018/04/04 4:0 p.m.57 views

CVE-2017-13281

CVE-2017-13281 affects Android 8.0–8.1, where avrc_pars_browsing_cmd in avrc_pars_tg.cc can overflow a stack buffer due to an improper bounds check, enabling remote code execution without user interaction. Affected product: Android OS; vulnerable component: avrc_pars_browsing_cmd (in avrc_pars_tg...

10CVSS9AI score0.01793EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder