Lucene search
K

204 matches found

NVD
NVD
added 2018/11/27 4:29 p.m.18 views

CVE-2018-11943

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, while processing fastboot flash command, memory leak or unexpected behavior may occur due to processing of unintialized data buffers...

7.8CVSS7.5AI score0.00169EPSS
Exploits0References2
Prion
Prion
added 2018/11/27 4:29 p.m.17 views

Command injection

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, while processing fastboot flash command, memory leak or unexpected behavior may occur due to processing of unintialized data buffers...

4.6CVSS8AI score0.00169EPSS
Exploits0References2
NVD
NVD
added 2018/07/06 5:29 p.m.25 views

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and...

7.7CVSS7.2AI score0.00197EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/07/06 5:0 p.m.31 views

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and...

7.6AI score0.00197EPSS
Exploits0References1
CVE
CVE
added 2018/07/06 5:0 p.m.59 views

CVE-2018-11259

This CVE (CVE-2018-11259) concerns Qualcomm Snapdragon devices (Automobile, Mobile, Wear) with NAND-based EFS storage. Root cause: improper access control allows fastboot access to erase the EFS partition, after which the apps processor has non-secure world read/write access to that partition unt...

7.7CVSS7.2AI score0.00197EPSS
Exploits0References1Affected Software1
android
android
added 2018/07/01 12:0 a.m.44 views

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and...

3.6CVSS2.5AI score0.00197EPSS
Exploits0References2
NVD
NVD
added 2018/06/15 3:29 p.m.22 views

CVE-2018-5854

A stack-based buffer overflow can occur in fastboot from all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

7.8CVSS7.6AI score0.00164EPSS
Exploits0References1
Prion
Prion
added 2018/06/15 3:29 p.m.14 views

Stack overflow

A stack-based buffer overflow can occur in fastboot from all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

4.6CVSS7.5AI score0.00164EPSS
Exploits0References1
CVE
CVE
added 2018/06/15 3:0 p.m.47 views

CVE-2018-5854

CVE-2018-5854 is a stack-based buffer overflow affecting the Qualcomm bootloader used in CAF/Linux-based Android deployments (fastboot). The vulnerability is classified as an Elevation of Privilege (EoP) issue with High/Critical impact, occurring in the bootloader component and enabling local pri...

7.8CVSS7.5AI score0.00164EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2018/06/11 7:46 a.m.1 views

OnePlus 6 Flaw Allows to Boot Any Image Even With Locked Bootloader

Have you recently bought a OnePlus 6? Don't leave your phone unattended. A serious vulnerability has been discovered in the OnePlus 6 bootloader that makes it possible for someone to boot arbitrary or modified images to take full admin control of your phone—even if the bootloader is locked. A...

6.4AI score
Exploits0
android
android
added 2018/06/01 12:0 a.m.41 views

CVE-2018-5854

A stack-based buffer overflow can occur in fastboot from all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

4.6CVSS8.1AI score0.00164EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/12/14 12:0 a.m.8 views

The vulnerability of the OxygenOS operating system in OnePlus 3 and 3T devices allows attackers to gain elevated privileges and expose sensitive information.

The vulnerability of the OxygenOS operating system in OnePlus 3 and 3T devices is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain root privileges and disclose sensitive information by replacing the device’s system...

10CVSS5.5AI score0.0282EPSS
Exploits3References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/12/14 12:0 a.m.8 views

The vulnerability of the OxygenOS operating system on OnePlus 3 and 3T devices, which allows a hacker to gain increased privileges

The vulnerability of the OxygenOS operating system in OnePlus 3 and 3T devices is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to gain root privileges and block notifications regarding the replacement of the system partition by using the...

10CVSS5.5AI score0.02673EPSS
Exploits3References2Affected Software1
CNVD
CNVD
added 2017/12/05 12:0 a.m.6 views

Google Android Fastboot Qualcomm Component Elevation of Privilege Vulnerability

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the Google Android Fastboot Qualcomm component. An attacker can exploit this vulnerability to achieve elevation of...

7.8CVSS7.1AI score0.0017EPSS
Exploits0References1
NVD
NVD
added 2017/11/22 7:29 p.m.27 views

CVE-2017-2691

Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. An unauthenticated attacker could force the phone to the fastboot mode and delete t...

7.2CVSS6.7AI score0.00284EPSS
Exploits0References2
OSV
OSV
added 2017/11/22 7:29 p.m.5 views

CVE-2017-2691

Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. An unauthenticated attacker could force the phone to the fastboot mode and delete t...

6.8CVSS5.8AI score0.00284EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/11/22 7:0 p.m.25 views

CVE-2017-2691

Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. An unauthenticated attacker could force the phone to the fastboot mode and delete t...

6.7AI score0.00284EPSS
Exploits0References2
Prion
Prion
added 2017/11/16 10:29 p.m.13 views

Design/Logic Flaw

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing OEM unlock/unlock-go fastboot commands data leak may occur, resulting from writing uninitialized stack structure to non-volatile memory...

5CVSS7.2AI score0.00412EPSS
Exploits0References1
CVE
CVE
added 2017/11/16 10:0 p.m.47 views

CVE-2017-9701

Technical details about CVE-2017-9701 are not publicly available in the provided connected documents; the information comes from the initial description only. Monitor for updates.

7.5CVSS7.2AI score0.00412EPSS
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2017/09/01 12:0 a.m.483 views

Motorola Bootloader - Kernel Cmdline Injection Secure Boot and Device Locking Bypass

Motorola Bootloader - Kernel Cmdline Injection Secure Boot and Device Locking Bypass Sources: https://alephsecurity.com/2017/08/30/untethered-initroot/ https://github.com/alephsecurity/initroot initroot: Motorola Bootloader Kernel Cmdline Injection Secure Boot & Device Locking Bypass CVE-2016-102...

9.3CVSS0.3AI score0.09465EPSS
Exploits5
Rows per page
Query Builder