587 matches found
CVE-2017-0629
CVE-2017-0629 is an information-disclosure vulnerability in the Qualcomm camera driver for Android, enabling a local malicious app to access data outside its permissions after compromising a privileged process. Affected: Android kernels 3.10/3.18 (Qualcomm camera driver). Base impact: partial con...
CVE-2017-0634
CVE-2017-0634 is an information-disclosure vulnerability in the Synaptics touchscreen driver on Android, affecting Kernel-3.18. The issue allows a local malicious process to access data outside its permissions after bypassing privileged process protection. Impact is limited to the Synaptics drive...
CVE-2017-0626
CVE-2017-0626 is an information-disclosure vulnerability in the Qualcomm crypto engine driver, affecting Android kernel components (Kernel-3.10 and Kernel-3.18). A local malicious app could access data outside its permission levels due to this driver flaw. Evidence shows affected product as Andro...
CVE-2017-0612
CVE-2017-0612 describes an elevation of privilege in the Qualcomm Secure Execution Environment Communicator driver on Android kernel 3.18. A local malicious application could exploit this to execute arbitrary code in the kernel context after compromising a privileged process. The vulnerability is...
CVE-2017-0611
CVE-2017-0611 is an elevation of privilege in the Qualcomm sound driver on Android that could allow a local attacker to run code in kernel context. Affected: Android devices using Kernel-3.10 and Kernel-3.18 (Android ID A-35393841). The entry is listed in multiple sources (NVD/NVD list and CVE re...
CVE-2017-0608
CVE-2017-0608 is an elevation-of-privilege in the Qualcomm kernel sound driver for Android, enabling a local attacker to run arbitrary code in the kernel context. The flaw requires compromising a privileged process first. Affected software/versions include Android on Kernel-3.10 and Kernel-3.18. ...
CVE-2017-0626
An information disclosure vulnerability in the Qualcomm crypto engine driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android...
CVE-2016-10277
An elevation of privilege vulnerability in the Motorola bootloader could enable a local malicious application to execute arbitrary code within the context of the bootloader. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing...
CVE-2016-10292
A denial of service vulnerability in the Qualcomm Wi-Fi driver could enable a proximate attacker to cause a denial of service in the Wi-Fi subsystem. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID:...
CVE-2016-10288
CVE-2016-10288 is an elevation-of-privilege flaw in the Qualcomm LED driver that could allow a local attacker to execute arbitrary code in the kernel context on affected Android devices. The issue targets the Android kernel (Kernel-3.18) via the LED driver, requiring compromising a privileged pro...
CVE-2017-0611
An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...
CVE-2017-0630
An information disclosure vulnerability in the kernel trace subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10,...
CVE-2017-0465
CVE-2017-0465 describes an elevation of privilege vulnerability in the Qualcomm ADSPRPC driver that could allow a local attacker to execute arbitrary code in the kernel context on Android devices. Affected components/versions in the public records include the Android kernel (Kernel-3.10, Kernel-3...
CVE-2017-0623
An elevation of privilege vulnerability in the HTC bootloader could enable a local malicious application to execute arbitrary code within the context of the bootloader. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18...
CVE-2016-10283
CVE-2016-10283 is an elevation-of-privilege flaw in the Qualcomm Wi‑Fi driver for Android that allows a local malicious app to execute arbitrary code in the kernel context after compromising a privileged process. The issue affects Kernel-3.10/3.18 Android builds (Android 5.x–7.x era devices inclu...
CVE-2016-10287
CVE-2016-10287 describes an elevation-of-privilege vulnerability in the Qualcomm sound driver within Android’s kernel. The issue could let a local malicious application execute arbitrary code in the kernel context, requiring prior compromise of a privileged process. Affected components/versions i...
CVE-2016-10285
CVE-2016-10285 concerns an elevation-of-privilege in the Qualcomm video driver within Android's kernel (Kernel-3.18). A local malicious application could execute arbitrary code in kernel context if it first compromises a privileged process. The issue is rated High and requires local access with u...
CVE-2017-0620
CVE-2017-0620 is a local elevation-of-privilege in the Qualcomm Secure Channel Manager driver on Android, allowing a malicious local app to run code in the kernel. Affected: Android devices with Kernel-3.10/3.18 (per the CVE entry). Impact per sources is High (CVSSv3: 7.0). Affected devices liste...
CVE-2017-0633
CVE-2017-0633 affects the Broadcom Wi‑Fi driver in Android. The Seebug entry details a information disclosure in the Broadcom bcmdhd driver where the host’s ioctl buffers to the dongle over SDIO are not cleared of unused memory before wldev_ioctl is invoked, causing uninitialized memory (includin...
CVE-2016-10290
CVE-2016-10290 is an elevation-of-privilege issue in the Qualcomm Shared Memory Driver used on Android. The vulnerability could allow a local malicious application to execute arbitrary code in the kernel context by exploiting the shared memory driver. The entry specifies that exploitation is loca...