Lucene search
+L
AndroidRecent

612 matches found

android
android
•added 2017/02/01 12:0 a.m.•32 views

CVE-2016-8418

A remote code execution vulnerability in the Qualcomm crypto driver could enable a remote attacker to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of remote code execution in the context of the kernel. Product: Android. Versions:...

10CVSS6.9AI score0.0273EPSS
Exploits0References4
android
android
•added 2017/02/01 12:0 a.m.•29 views

CVE-2017-0406

A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver...

9.3CVSS7.8AI score0.01856EPSS
Exploits0References5Affected Software1
android
android
•added 2017/02/01 12:0 a.m.•38 views

CVE-2017-0430

An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing t...

9.3CVSS9.5AI score0.00888EPSS
Exploits0References2
android
android
•added 2017/02/01 12:0 a.m.•31 views

CVE-2017-0407

A remote code execution vulnerability in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediaserver...

9.3CVSS7.8AI score0.01856EPSS
Exploits0References4Affected Software1
android
android
•added 2017/01/01 12:0 a.m.•39 views

CVE-2015-3288

mm/memory.c in the Linux kernel before 4.1.4 mishandles anonymous pages, which allows local users to gain privileges or cause a denial of service page tainting via a crafted application that triggers writing to page zero...

7.2CVSS6.2AI score0.00479EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•25 views

CVE-2016-8426

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01619EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•36 views

CVE-2016-8427

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01619EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•32 views

CVE-2016-8425

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01619EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•36 views

CVE-2016-8424

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01619EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•37 views

CVE-2016-8422

An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.3AI score0.00601EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•39 views

CVE-2016-8423

An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.3AI score0.00601EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•34 views

CVE-2016-8432

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01537EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•31 views

CVE-2016-8436

An elevation of privilege vulnerability in the Qualcomm video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing t...

9.3CVSS9AI score0.00677EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•31 views

CVE-2016-8430

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01717EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•41 views

CVE-2016-8443

Possible unauthorized memory access in the hypervisor. Incorrect configuration provides access to subsystem page tables. Product: Android. Versions: Kernel 3.18. Android ID: A-32576499. References: QC-CR964185...

7.2CVSS4.7AI score0.00324EPSS
Exploits0References2
android
android
•added 2017/01/01 12:0 a.m.•41 views

CVE-2016-8431

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01537EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•41 views

CVE-2016-8433

An elevation of privilege vulnerability in the MediaTek driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS10AI score0.00601EPSS
Exploits0References2
android
android
•added 2017/01/01 12:0 a.m.•33 views

CVE-2016-8429

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01619EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•31 views

CVE-2016-8435

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01234EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•36 views

CVE-2016-8442

Possible unauthorized memory access in the hypervisor. Lack of input validation could allow hypervisor memory to be accessed by the HLOS. Product: Android. Versions: Kernel 3.18. Android ID: A-31625910. QC-CR1038173...

7.2CVSS6.2AI score0.00371EPSS
Exploits0References2
android
android
•added 2017/01/01 12:0 a.m.•32 views

CVE-2016-8434

An elevation of privilege vulnerability in the Qualcomm GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.2AI score0.01227EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•37 views

CVE-2015-5706

Use-after-free vulnerability in the pathopenat function in fs/namei.c in the Linux kernel 3.x and 4.x before 4.0.4 allows local users to cause a denial of service or possibly have unspecified other impact via OTMPFILE filesystem operations that leverage a duplicate cleanup operation...

4.6CVSS4.9AI score0.00436EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•29 views

CVE-2016-8428

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.01619EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•38 views

CVE-2016-8482

An elevation of privilege vulnerability in the NVIDIA GPU driver. Product: Android. Versions: Android kernel. Android ID: A-31799863. References: N-CVE-2016-8482...

7.2CVSS7.4AI score0.00211EPSS
Exploits0References3
android
android
•added 2017/01/01 12:0 a.m.•38 views

CVE-2016-8438

Integer overflow leading to a TOCTOU condition in hypervisor PIL. An integer overflow exposes a race condition that may be used to bypass Peripheral Image Loader PIL authentication. Product: Android. Versions: Kernel 3.18. Android ID: A-31624565. References: QC-CR1023638...

10CVSS4.6AI score0.02251EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•32 views

CVE-2016-6775

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.0179EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•35 views

CVE-2016-6916

Integer overflow in nvhostjob.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denial of service system crash via unspecified vectors, which triggers a buffer overflow...

7.2CVSS6.5AI score0.00422EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•39 views

CVE-2016-6917

Buffer overflow in nvhostjob.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5...

7.2CVSS6.3AI score0.00448EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•30 views

CVE-2016-8411

Buffer overflow vulnerability while processing QMI QOS TLVs. Product: Android. Versions: versions that have qmiqossrvc.c. Android ID: 31805216. References: QC CR912775...

10CVSS5.6AI score0.00888EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•29 views

CVE-2016-6915

Stack-based buffer overflow in nvhostjob.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5...

7.2CVSS6.3AI score0.00447EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•30 views

CVE-2016-9120

Race condition in the ionioctl function in drivers/staging/android/ion/ion.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service use-after-free by calling IONIOCFREE on two CPUs at the same time...

9.3CVSS5.5AI score0.01736EPSS
Exploits0References3
android
android
•added 2016/12/01 12:0 a.m.•39 views

CVE-2015-8966

arch/arm/kernel/sysoabi-compat.c in the Linux kernel before 4.4 allows local users to gain privileges via a crafted 1 FOFDGETLK, 2 FOFDSETLK, or 3 FOFDSETLKW command in an fcntl64 system call...

7.2CVSS7AI score0.00535EPSS
Exploits0References3
android
android
•added 2016/12/01 12:0 a.m.•38 views

CVE-2016-6777

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.0179EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•36 views

CVE-2016-6776

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the...

9.3CVSS9.8AI score0.0179EPSS
Exploits0References2
android
android
•added 2016/12/01 12:0 a.m.•44 views

CVE-2016-4794

Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6 allows local users to cause a denial of service BUG or possibly have unspecified other impact via crafted use of the mmap and bpf system calls...

7.2CVSS6.1AI score0.00493EPSS
Exploits1References4
android
android
•added 2016/11/01 12:0 a.m.•47 views

CVE-2016-6828

The tcpchecksendhead function in include/net/tcp.h in the Linux kernel before 4.7.5 does not properly maintain certain SACK state after a failed data copy, which allows local users to cause a denial of service tcpxmitretransmitqueue use-after-free and system crash via a crafted SACK option...

4.9CVSS4.4AI score0.01181EPSS
Exploits5References3
android
android
•added 2016/11/01 12:0 a.m.•24 views

CVE-2016-6736

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00649EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•34 views

CVE-2016-6729

An elevation of privilege vulnerability in the Qualcomm bootloader in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, whi...

9.3CVSS7.5AI score0.00636EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•57 views

CVE-2016-7911

Race condition in the gettaskioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service use-after-free via a crafted ioprioget system call...

9.3CVSS6.5AI score0.01541EPSS
Exploits0References3
android
android
•added 2016/11/01 12:0 a.m.•41 views

CVE-2016-6728

An elevation of privilege vulnerability in the kernel ION subsystem in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise,...

9.3CVSS7AI score0.0124EPSS
Exploits1References2
android
android
•added 2016/11/01 12:0 a.m.•34 views

CVE-2015-8961

The ext4journalstop function in fs/ext4/ext4jbd2.c in the Linux kernel before 4.3.3 allows local users to gain privileges or cause a denial of service use-after-free by leveraging improper access to a certain error field...

9.3CVSS6.9AI score0.01999EPSS
Exploits0References3
android
android
•added 2016/11/01 12:0 a.m.•52 views

CVE-2016-2184

The createfixedstreamquirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL pointer dereference or double free, and system crash via a crafted endpoints value in a USB device...

4.9CVSS5AI score0.01946EPSS
Exploits2References3
android
android
•added 2016/11/01 12:0 a.m.•31 views

CVE-2016-6731

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00666EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•38 views

CVE-2016-6734

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00686EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•32 views

CVE-2016-6727

The Qualcomm GPS subsystem in Android on Android One devices allows remote attackers to execute arbitrary code...

10CVSS8.5AI score0.02726EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•35 views

CVE-2016-6735

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00686EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•29 views

CVE-2016-6733

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

9.3CVSS9AI score0.00666EPSS
Exploits0References2
android
android
•added 2016/11/01 12:0 a.m.•66 views

CVE-2016-5195

Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write COW feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."...

7.2CVSS4.6AI score0.83524EPSS
Exploits82References4
android
android
•added 2016/11/01 12:0 a.m.•32 views

CVE-2016-7912

Use-after-free vulnerability in the ffsusercopyworker function in drivers/usb/gadget/function/ffs.c in the Linux kernel before 4.5.3 allows local users to gain privileges by accessing an I/O data structure after a certain callback call...

9.3CVSS7AI score0.0211EPSS
Exploits0References3
android
android
•added 2016/11/01 12:0 a.m.•41 views

CVE-2016-7913

The xc2028setconfig function in drivers/media/tuners/tuner-xc2028.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service use-after-free via vectors involving omission of the firmware name from a certain data structure...

9.3CVSS5.9AI score0.02156EPSS
Exploits0References3
Total number of security vulnerabilities612