Lucene search
+L
AndroidMost viewed

612 matches found

android
android
•added 2017/01/01 12:0 a.m.•31 views

CVE-2016-8436

An elevation of privilege vulnerability in the Qualcomm video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing t...

9.3CVSS9AI score0.00677EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•31 views

CVE-2016-8430

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01717EPSS
Exploits0References3
android
android
•added 2016/08/01 12:0 a.m.•31 views

CVE-2016-3819

Integer overflow in codecs/on2/h264dec/source/h264bsddpb.c in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted...

7.5CVSS8.9AI score0.01749EPSS
Exploits0References3Affected Software1
android
android
•added 2016/07/01 12:0 a.m.•31 views

CVE-2016-3743

decoder/ih264dapi.c in mediaserver in Android 6.x before 2016-07-01 does not initialize certain data structures, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 27907656...

7.5CVSS8.4AI score0.01075EPSS
Exploits0References3Affected Software1
android
android
•added 2016/07/01 12:0 a.m.•31 views

CVE-2016-3768

The Qualcomm performance component in Android before 2016-07-05 on Nexus 5, 6, 5X, 6P, and 7 2013 devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28172137 and Qualcomm internal bug CR1010644...

9.3CVSS7.9AI score0.00412EPSS
Exploits0References2
android
android
•added 2016/07/01 12:0 a.m.•31 views

CVE-2016-3769

The NVIDIA video driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28376656...

9.3CVSS9AI score0.00421EPSS
Exploits0References2
android
android
•added 2016/07/01 12:0 a.m.•31 views

CVE-2016-3741

The H.264 decoder in mediaserver in Android 6.x before 2016-07-01 does not initialize certain slice data, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 28165661...

7.5CVSS8.4AI score0.01412EPSS
Exploits0References4Affected Software1
android
android
•added 2016/06/01 12:0 a.m.•31 views

CVE-2016-2463

Multiple integer overflows in the h264dec component in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media...

7.5CVSS8.5AI score0.00868EPSS
Exploits0References3Affected Software1
android
android
•added 2016/04/02 12:0 a.m.•31 views

CVE-2016-0837

MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read and memory corruption via a crafted media file, aka...

10CVSS8.9AI score0.02018EPSS
Exploits0References3Affected Software1
android
android
•added 2016/03/01 12:0 a.m.•31 views

CVE-2016-0816

mediaserver in Android 6.x before 2016-03-01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, related to decoder/ih264dparseislice.c and decoder/ih264dparsepslice.c, aka internal bug 25928803...

10CVSS9AI score0.02822EPSS
Exploits0References3Affected Software1
android
android
•added 2015/10/01 12:0 a.m.•31 views

CVE-2015-3869

libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 23036083...

10CVSS8.9AI score0.022EPSS
Exploits0References3Affected Software1
android
android
•added 2015/08/01 12:0 a.m.•31 views

CVE-2015-3829

Off-by-one error in the MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allows remote attackers to execute arbitrary code or cause a denial of service integer overflow and memory corruption via crafted MPEG-4 covr atoms with a size equal ...

10CVSS8.3AI score0.89782EPSS
Exploits0References3Affected Software1
android
android
•added 2019/06/01 12:0 a.m.•30 views

CVE-2019-2095

In callGenIDChangeListeners and related functions of SkPixelRef.cpp, there is a possible use after free due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:...

7.6CVSS6.6AI score0.00677EPSS
Exploits0References3Affected Software1
android
android
•added 2018/11/01 12:0 a.m.•30 views

CVE-2018-9536

In numerous functions of libFDK, there are possible out of bounds writes due to incorrect bounds checks. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID:...

9.3CVSS7.1AI score0.01428EPSS
Exploits0References3Affected Software1
android
android
•added 2018/09/01 12:0 a.m.•30 views

CVE-2018-11824

A stack-based buffer overflow can occur in a firmware routine in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835, SD 845, SD 850, SDA660...

7.2CVSS4.3AI score0.00207EPSS
Exploits0References2
android
android
•added 2018/08/01 12:0 a.m.•30 views

CVE-2018-9427

In CopyToOMX of OMXNodeInstance.cpp there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-8.0...

9.3CVSS7.4AI score0.01845EPSS
Exploits0References4Affected Software1
android
android
•added 2018/04/01 12:0 a.m.•30 views

CVE-2017-8274

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, an access control vulnerability exists in Core...

10CVSS2.1AI score0.01252EPSS
Exploits0References2
android
android
•added 2018/04/01 12:0 a.m.•30 views

CVE-2017-18071

In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, debug policy can potentially be bypassed...

10CVSS2.5AI score0.01262EPSS
Exploits0References2
android
android
•added 2017/12/01 12:0 a.m.•30 views

CVE-2017-0877

A remote code execution vulnerability in the Android media framework libavc. Product: Android. Versions: 6.0. Android ID A-66372937...

9.3CVSS9.1AI score0.01437EPSS
Exploits0References2Affected Software1
android
android
•added 2017/11/01 12:0 a.m.•30 views

CVE-2017-0835

A remote code execution vulnerability in the Android media framework libmpeg2. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63316832...

9.3CVSS9.3AI score0.01311EPSS
Exploits0References3Affected Software1
android
android
•added 2017/11/01 12:0 a.m.•30 views

CVE-2017-0832

A remote code execution vulnerability in the Android media framework libmpeg2. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62887820...

9.3CVSS9.3AI score0.01233EPSS
Exploits0References3Affected Software1
android
android
•added 2017/09/01 12:0 a.m.•30 views

CVE-2017-0759

A remote code execution vulnerability in the Android media framework libstagefright. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36715268...

9.3CVSS7.9AI score0.01053EPSS
Exploits0References4Affected Software1
android
android
•added 2017/09/01 12:0 a.m.•30 views

CVE-2017-0764

A remote code execution vulnerability in the Android media framework libvorbis. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62872015...

9.3CVSS9.4AI score0.01323EPSS
Exploits0References4Affected Software1
android
android
•added 2017/08/01 12:0 a.m.•30 views

CVE-2017-0716

A remote code execution vulnerability in the Android media framework libmpeg2. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37203196...

9.3CVSS9.3AI score0.01096EPSS
Exploits0References4Affected Software1
android
android
•added 2017/06/01 12:0 a.m.•30 views

CVE-2016-10341

In all Android releases from CAF using the Linux kernel, 3rd party TEEs have more privilege than intended...

9.3CVSS6.1AI score0.00578EPSS
Exploits0References2
android
android
•added 2017/06/01 12:0 a.m.•30 views

CVE-2015-9010

An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-36393101...

10CVSS6.9AI score0.01154EPSS
Exploits0References2
android
android
•added 2017/06/01 12:0 a.m.•30 views

CVE-2016-10299

An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-32577244...

10CVSS6.9AI score0.0113EPSS
Exploits0References2
android
android
•added 2017/05/01 12:0 a.m.•30 views

CVE-2014-9926

In GNSS in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist...

9.3CVSS7.8AI score0.0046EPSS
Exploits0References2
android
android
•added 2017/04/01 12:0 a.m.•30 views

CVE-2015-9000

In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel...

9.3CVSS8.6AI score0.00578EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•30 views

CVE-2016-8411

Buffer overflow vulnerability while processing QMI QOS TLVs. Product: Android. Versions: versions that have qmiqossrvc.c. Android ID: 31805216. References: QC CR912775...

10CVSS5.6AI score0.00888EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•30 views

CVE-2016-9120

Race condition in the ionioctl function in drivers/staging/android/ion/ion.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service use-after-free by calling IONIOCFREE on two CPUs at the same time...

9.3CVSS5.5AI score0.01736EPSS
Exploits0References3
android
android
•added 2016/11/01 12:0 a.m.•30 views

CVE-2016-6730

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00666EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•30 views

CVE-2016-6733

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00666EPSS
Exploits0References2
android
android
•added 2016/08/01 12:0 a.m.•30 views

CVE-2016-3857

The kernel in Android before 2016-08-05 on Nexus 7 2013 devices allows attackers to gain privileges via a crafted application, aka internal bug 28522518...

9.3CVSS9.2AI score0.00582EPSS
Exploits0References2
android
android
•added 2016/05/01 12:0 a.m.•30 views

CVE-2016-2437

The NVIDIA video driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27436822...

9.3CVSS8.9AI score0.00502EPSS
Exploits0References2
android
android
•added 2016/04/02 12:0 a.m.•30 views

CVE-2016-0839

postproc/volumelistener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 25753245...

10CVSS8.7AI score0.0206EPSS
Exploits0References3Affected Software1
android
android
•added 2016/04/02 12:0 a.m.•30 views

CVE-2016-0838

Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file,...

10CVSS8.8AI score0.02822EPSS
Exploits0References4Affected Software1
android
android
•added 2016/02/01 12:0 a.m.•30 views

CVE-2016-0803

libstagefright in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file that triggers a large memory allocation in the 1 SoftMPEG4Encoder...

10CVSS8.3AI score0.02518EPSS
Exploits0References3Affected Software1
android
android
•added 2015/10/01 12:0 a.m.•30 views

CVE-2015-3867

libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 23213430...

10CVSS8.9AI score0.01858EPSS
Exploits0References3Affected Software1
android
android
•added 2015/10/01 12:0 a.m.•30 views

CVE-2015-3870

libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted media file, aka internal bug 22771132...

10CVSS8.9AI score0.022EPSS
Exploits0References3Affected Software1
android
android
•added 2013/11/24 12:0 a.m.•30 views

TwerkMyMoto

Motorola Razr I x86 4.1.2 root exploit, silly permissions bug. symlink /data/logs/core to ueventhelper...

2AI score
Exploits0References3Affected Software1
android
android
•added 2019/03/01 12:0 a.m.•29 views

CVE-2018-11817

...

0.8AI score
Exploits0References4
android
android
•added 2018/10/01 12:0 a.m.•29 views

CVE-2018-9498

In SkSampler::Fill of SkSampler.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1...

9.3CVSS7.3AI score0.01625EPSS
Exploits0References4Affected Software1
android
android
•added 2018/08/01 12:0 a.m.•29 views

CVE-2017-18305

XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835...

6.9CVSS2.9AI score0.00235EPSS
Exploits0References2
android
android
•added 2017/11/01 12:0 a.m.•29 views

CVE-2017-0833

A remote code execution vulnerability in the Android media framework libavc. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62896384...

9.3CVSS9.1AI score0.01311EPSS
Exploits0References3Affected Software1
android
android
•added 2017/10/01 12:0 a.m.•29 views

CVE-2017-11053

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when qos map set IE of length less than 16 is received in association response or in qos map configure action frame, a buffer overflow can potentially occur in ConvertQosMapsetFrame...

6.8CVSS3.7AI score0.00385EPSS
Exploits0References3
android
android
•added 2017/08/01 12:0 a.m.•29 views

CVE-2017-0719

A remote code execution vulnerability in the Android media framework mpeg2 decoder. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37273673...

9.3CVSS8.7AI score0.01378EPSS
Exploits0References4Affected Software1
android
android
•added 2017/06/01 12:0 a.m.•29 views

CVE-2015-9012

An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-36384691...

10CVSS6.9AI score0.0113EPSS
Exploits0References2
android
android
•added 2017/06/01 12:0 a.m.•29 views

CVE-2015-9029

In all Android releases from CAF using the Linux kernel, a vulnerability exists in the access control settings of modem memory...

9.3CVSS7.1AI score0.00563EPSS
Exploits0References2
android
android
•added 2017/05/01 12:0 a.m.•29 views

CVE-2015-9006

In Resource Power Manager RPM in all Android releases from CAF using the Linux kernel, an Improper Access Control vulnerability could potentially exist...

9.3CVSS7.6AI score0.00443EPSS
Exploits0References2
Total number of security vulnerabilities612