Android Security Vulnerabilities and Issues — Page 117 of Android CVE List

5.3CVSS5.3AI score0.00094EPSS

CVE-2017-18658

An issue was discovered on Samsung mobile devices with M(6.0) software. The multiwindow_facade API allows attackers to cause a NullPointerException and system halt via an attempted screen touch of a non-existing display. The Samsung ID is SVE-2017-9383 (August 2017).

9.8CVSS9.7AI score0.00159EPSS

CVE-2017-18661

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. There is a buffer overflow in process_cipher_tdea. The Samsung ID is SVE-2017-8973 (July 2017).

8.8CVSS8.6AI score0.00032EPSS

CVE-2017-18665

An issue was discovered on Samsung mobile devices with M(6.0) software. There is a NULL pointer exception in WifiService via adb-cmd, causing memory corruption. The Samsung ID is SVE-2017-8287 (June 2017).

7.5CVSS7.6AI score0.00113EPSS

CVE-2017-18675

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) (Exynos7420 or Exynox8890 chipsets) software. The Camera application can leak uninitialized memory via ion. The Samsung ID is SVE-2016-6989 (April 2017).

7.5CVSS7.6AI score0.00081EPSS

CVE-2017-18677

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. Because of an unprotected Intent, an attacker can reset the configuration of certain applications. The Samsung ID is SVE-2016-7142 (April 2017).

CVE•added 2017/12/06 6:29 p.m.•37 views

CVE-2017-6263

NVIDIA driver contains a vulnerability where it is possible a use after free malfunction can occur due to improper usage of the list_for_each kernel macro which could enable unauthorized code execution and possibly lead to elevation of privileges. This issue is rated as high. Product: Android. Vers...

7.8CVSS7.4AI score0.00025EPSS

CVE•added 2018/03/06 4:29 p.m.•37 views

CVE-2017-6280

NVIDIA driver contains a possible out-of-bounds read vulnerability due to a leak which may lead to information disclosure. This issue is rated as moderate. Android: A-63851980.

7.5CVSS6.8AI score0.00123EPSS

CVE•added 2017/06/13 8:29 p.m.•37 views

CVE-2017-7365

In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated.

9.3CVSS7.6AI score0.00044EPSS

CVE•added 2017/06/13 8:29 p.m.•37 views

CVE-2017-7367

In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability exists while processing the boot image.

9.3CVSS7.5AI score0.00044EPSS

CVE•added 2017/06/13 8:29 p.m.•37 views

CVE-2017-8237

In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists while loading a firmware image.

9.3CVSS7.8AI score0.00048EPSS

CVE•added 2017/08/16 3:29 p.m.•37 views

CVE-2017-8243

A buffer overflow can occur in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android when processing a firmware image file.

9.3CVSS7.6AI score0.00038EPSS

CVE•added 2017/08/18 6:29 p.m.•37 views

CVE-2017-8257

In all Qualcomm products with Android releases from CAF using the Linux kernel, when accessing the sde_rotator debug interface for register reading with multiple processes, one process can free the debug buffer while another process still has the debug buffer in use.

7.8CVSS7.4AI score0.00041EPSS

CVE•added 2017/08/18 6:29 p.m.•37 views

CVE-2017-8263

In all Qualcomm products with Android releases from CAF using the Linux kernel, a kernel fault can occur when doing certain operations on a read-only virtual address in userspace.

9.3CVSS7.1AI score0.00088EPSS

CVE•added 2017/09/21 3:29 p.m.•37 views

CVE-2017-8278

In all Qualcomm products with Android releases from CAF using the Linux kernel, while reading audio data from an unspecified driver, a buffer overflow or integer overflow could occur.

9.3CVSS8.1AI score0.00038EPSS

CVE•added 2017/08/18 7:29 p.m.•37 views

CVE-2017-9679

In all Qualcomm products with Android releases from CAF using the Linux kernel, if a userspace string is not NULL-terminated, kernel memory contents can leak to system logs.

7.5CVSS6.9AI score0.00111EPSS

CVE•added 2017/10/10 8:29 p.m.•37 views

CVE-2017-9686

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possible double free/use after free in the SPS driver when debugfs logging is used.

7.8CVSS7.3AI score0.00022EPSS

CVE•added 2017/11/16 10:29 p.m.•37 views

CVE-2017-9701

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing OEM unlock/unlock-go fastboot commands data leak may occur, resulting from writing uninitialized stack structure to non-volatile memory.

7.5CVSS7.2AI score0.00117EPSS

CVE•added 2017/12/05 5:29 p.m.•37 views

CVE-2017-9710

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, IOCTL interface to send QMI NOTIFY REQ messages can be called from multiple contexts which can result in buffer overflow of msg cache.

7.8CVSS7.3AI score0.00017EPSS

7.8CVSS7.7AI score0.00016EPSS

CVE-2018-11274

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, buffer overflow may occur when payload size is extremely large.

8CVSS7.4AI score0.00071EPSS

CVE-2018-11294

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, WLAN handler indication from the firmware gets the information for 4 access categories. While processing this information only the first 3 AC information is copied due to the improper conditi...

7.8CVSS7.5AI score0.00022EPSS

CVE-2018-11296

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a message from firmware in WLAN handler, a buffer overwrite can occur.

7.8CVSS7.4AI score0.00037EPSS

CVE-2018-11851

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on input received to calculate the buffer length can lead to out of bound write to kernel stack.

7.8CVSS7.5AI score0.00015EPSS

CVE-2018-11863

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from firmware to calculate the length of WMA roam synch buffer can lead to buffer overwrite during memcpy.

7.8CVSS7.6AI score0.00039EPSS

CVE-2018-11868

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of length validation check for value received from firmware can lead to buffer overflow in nan response event handler.

CVE•added 2018/11/27 6:0 p.m.•37 views

CVE-2018-11910

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /persist/ which presents a potential issue.

7.8CVSS7.3AI score0.00014EPSS

CVE•added 2018/11/27 6:0 p.m.•37 views

CVE-2018-11918

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, memory allocated is automatically released by the kernel if the 'probe' function fails with an error code.

7.8CVSS7.3AI score0.00018EPSS

CVE•added 2020/04/08 5:15 p.m.•37 views

CVE-2018-21039

An issue was discovered on Samsung mobile devices with N(7.0) software. With the Location permission for the compass feature in Quick Tools (aka QuickTools), an attacker can bypass the lockscreen. The Samsung ID is SVE-2018-12053 (December 2018).

7.5CVSS7.6AI score0.00114EPSS

CVE•added 2020/04/08 6:15 p.m.•37 views

CVE-2018-21042

An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. Dual Messenger allows installation of an arbitrary APK with resultant privileged code execution. The Samsung ID is SVE-2018-13299 (December 2018).

9.8CVSS9.6AI score0.00164EPSS

CVE•added 2020/04/08 6:15 p.m.•37 views

CVE-2018-21067

An issue was discovered on Samsung mobile devices with M(6.0) software. There is an information disclosure in a Trustlet because an address is logged. The Samsung ID is SVE-2018-11600 (July 2018).

5.3CVSS5.2AI score0.00091EPSS

CVE•added 2018/06/12 8:29 p.m.•37 views

CVE-2018-3579

In the WLAN driver in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel, event->num_entries_in_page is a value received from firmware that is not properly validated which can lead to a buffer over-read

5.5CVSS5.2AI score0.00019EPSS

CVE•added 2018/04/03 5:29 p.m.•37 views

CVE-2018-5820

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in the function wma_tbttoffset_update_event_handler(), a parameter received from firmware is used to allocate memory for a local buffer ...

7.5CVSS6.9AI score0.00102EPSS

CVE•added 2018/06/06 9:29 p.m.•37 views

CVE-2018-5840

Buffer Copy without Checking Size of Input can occur during the DRM SDE driver initialization sequence in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

9.3CVSS5.3AI score0.00043EPSS

CVE•added 2018/11/27 6:0 p.m.•37 views

CVE-2018-5856

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, due to a race condition, a Use After Free condition can occur in Audio.

7.8CVSS7.4AI score0.00062EPSS

CVE•added 2018/10/02 7:29 p.m.•37 views

CVE-2018-9452

In getOffsetForHorizontal of Layout.java, there is a possible application hang due to a slow width calculation. This could lead to remote denial of service if a contact with many hidden unicode characters were sent to the device and used by a local app, with no additional execution privileges neede...

5.5CVSS5.5AI score0.00377EPSS

CVE•added 2018/10/02 7:29 p.m.•37 views

CVE-2018-9491

In AMediaCodecCryptoInfo_new of NdkMediaCodec.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to remote code execution in external apps with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: An...

9.3CVSS7.9AI score0.00327EPSS

CVE•added 2018/10/02 7:29 p.m.•37 views

CVE-2018-9496

In ixheaacd_real_synth_fft_p3 of ixheaacd_esbr_fft.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-9.0 An...

9.3CVSS7.9AI score0.01221EPSS

CVE•added 2018/12/07 11:29 p.m.•37 views

CVE-2018-9519

In easelcomm_hw_build_scatterlist, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System privileges required. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-69808833.

6.9CVSS6.5AI score0.0001EPSS

7.8CVSS8AI score0.00016EPSS

CVE-2018-9525

In the AndroidManifest.xml file defining the SliceBroadcastReceiver handler for com.android.settings.slice.action.WIFI_CHANGED, there is a possible permissions bypass due to a confused deputy. This could lead to local escalation of privilege, allowing a local attacker to change device settings, wit...

8.8CVSS9AI score0.00409EPSS

CVE-2018-9528

In ixheaacd_over_lap_add1_armv8 of ixheaacd_overlap_add1.s there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android...

7.5CVSS7.2AI score0.00386EPSS

CVE-2018-9541

In avrc_pars_vendor_rsp of avcr_pars_ct.cc, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Andro...

7.5CVSS7.2AI score0.00386EPSS

CVE-2018-9542

In avrc_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0...