8153 matches found
CVE-2017-18070
CVE-2017-18070 describes a vulnerability in Qualcomm WLAN on Android (CAF) where, in the function wma_ndp_end_response_event_handler() , the local variable len_end_rsp (uint32) can overflow if event->num_ndp_end_rsp_per_ndi_list is very large. This overflow can lead to a heap overwrite of the ...
CVE-2017-18647
CVE-2017-18647 concerns Samsung mobile devices running M(6,x) and N(7.0) software. The issue lies in the TA Scrypto v1.0 implementation in Secure Driver, where a race condition can lead to a buffer overflow. Affected Samsung identifiers are SVE-2017-8973, SVE-2017-8974, and SVE-2017-8975 (Nov 201...
CVE-2017-18656
CVE-2017-18656 describes a buffer over-read in a trustlet on Samsung mobile devices running M(6.0) and N(7.x). Affected component is the trustlet; root cause is a buffer over-read. The issue has been reported across multiple sources (NVD, Red Hat CVE page, CVE records) with the Samsung ID SVE-201...
CVE-2017-18665
Samsung mobile devices running Android M (6.0) are affected by CVE-2017-18665 due to a NULL pointer dereference in WifiService via adb-cmd, leading to memory corruption. Connected sources consistently identify the vulnerability as located in WifiService and tied to Samsung’s SVE-2017-8287 (June 2...
CVE-2017-18668
CVE-2017-18668 affects Samsung mobile devices running Android M (6.0) software. The records indicate the vulnerability allows an attacker to prevent users from making outbound calls and sending outbound text messages, linked to Samsung ID SVE-2017-8706. The available documents do not specify the ...
CVE-2017-18677
CVE-2017-18677 affects Samsung mobile devices running M (6.0) and N (7.x). The root cause described across connected sources is an unprotected Intent that allows an attacker to reset the configuration of certain applications. Impact stated: attacker can reset app configurations, with no explicit ...
CVE-2017-3749
CVE-2017-3749 affects Lenovo VIBE phones (Idea Friend Android app). The vulnerability allows private data to be backed up and restored via Android Debug Bridge, enabling tampering that leads to privilege escalation when exploited with CVE-2017-3748 and CVE-2017-3750. Connected sources also descri...
CVE-2017-8237
CVE-2017-8237 is a buffer overflow in CAF Android builds using the Linux kernel when loading a firmware image. Connected data indicates the issue affects Qualcomm networking driver components (QC-CR#1110522) with an Elevation of Privilege (EoP) impact rated as Moderate. No explicit exploit detail...
CVE-2017-8250
CVE-2017-8250 (Qualcomm GPU driver, Android CAF builds) affects Qualcomm GPU driver in Android CAF using the Linux kernel. The vulnerability arises when user-controlled variables nr_cmds and nr_bos are passed between functions without checks, allowing an integer overflow that can overflow a small...
CVE-2017-8254
CVE-2017-8254 affects Qualcomm-based Android devices that use CAF builds with the Linux kernel. The issue is a null/invalid audio client pointer being dereferenced before it is validated, as described in the CVE entry. The documented impact in the provided sources is limited to this dereference t...
CVE-2017-8263
CVE-2017-8263 affects Qualcomm components in Android CAF builds that use the Linux kernel. The issue is a kernel fault triggered by certain operations on a read-only user-space virtual address, with a high impact (local, high confidentiality/integrity/availability implications). Exploitation deta...
CVE-2017-8264
CVE-2017-8264 affects the camera driver in all Qualcomm products with Android CAF builds on the Linux kernel. The issue results from a userspace process that can cause a Denial of Service in the Qualcomm camera driver. The available documents do not specify the exact vulnerable component version,...
CVE-2017-8265
CVE-2017-8265: A race condition in the Qualcomm video driver (CAF Android builds on Linux kernel) can cause a double free. This is a local issue affecting the video subsystem with potential impact to confidentiality, integrity, and availability as per CVSS metrics, but exploitation status and exa...
CVE-2017-8277
In CVE-2017-8277, Qualcomm products running Android CAF builds on the Linux kernel are affected. The issue occurs in the function msm_dba_register_client: if a client’s registration fails, the object is freed but not removed from the list, enabling a use-after-free when the list is traversed next...
CVE-2017-9680
CVE-2017-9680 affects Qualcomm components used in Android CAF builds running the Linux kernel. The issue occurs when a pointer argument from userspace is invalid, and a driver may use an uninitialized structure to log an error message. The connected documents confirm the affected stack is Qualcom...
CVE-2017-9709
CVE-2017-9709 is a privilege-escalation issue in telephony affecting Android for MSM/CAF Linux-kernel builds. Affected components are telephony-related in Android variants (Android for MSM, Firefox OS for MSM, QRD Android) with CAF kernel usage. The vulnerability is described as enabling elevatio...
CVE-2017-9724
CVE-2017-9724 affects Qualcomm products running CAF Android builds with the Linux kernel. The root cause is in the ION cache maintenance code, where kernel memory could be written from a user-supplied address due to user-level permissions. This allows a local attacker to Access kernel memory (loc...
CVE-2018-11280
CVE-2018-11280 affects Android CAF builds (Linux kernel in Android for MSM, Firefox OS for MSM, QRD Android). The vulnerability arises from missing size validation for NAT entry input during user-space processing, which could allow memory exhaustion when input size exceeds the maximum. Impact is ...
CVE-2018-11293
CVE-2018-11293 affects Qualcomm WLAN Host in Android variants built on CAF Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android). The issue arises in wma_ndp_confirm_event_handler and wma_ndp_indication_event_handler where ndp_cfg_len and num_ndp_app_info are taken from firmware without...
CVE-2018-11946
The CVE-2018-11946 entry concerns CAF-derived Android/Linux builds (Android for MSM, Firefox OS for MSM, QRD Android). The vulnerability is that the UPnP daemon may be running out of the box, enabling port forwarding without authentication. Documented impacts indicate potential exposure due to un...
CVE-2018-12014
CVE-2018-12014 describes a null pointer dereference in the NAT module of the Linux kernel used in CAF Android releases (Android for MSM, Firefox OS for MSM, QRD Android) via a freed pointer without a NULL assignment. In the NVD listing, the vulnerability is characterized as a local vulnerability ...
CVE-2018-21039
CVE-2018-21039 affects Samsung mobile devices running Android 7.0 (Nougat). The issue arises when granting Location permission to the compass feature in Quick Tools/QuickTools, enabling a lockscreen bypass. Connected sources reiterate the vulnerability but do not provide detailed root-cause analy...
CVE-2018-21066
CVE-2018-21066 affects Samsung mobile devices running M(6.0) with Exynos or MediaTek chipsets; a buffer overflow in a Trustlet leads to memory corruption. Affected: Samsung devices; impact: high/critical (C, I, A all high). Samsung ID SVE-2018-11599. CVSSv3.1 base score 9.8 (AV:N/AC:L/PR:N/UI:N/S...
CVE-2018-21081
Technical details are not publicly available in the provided documents; no concrete affected products, components, or fixes are disclosed. Monitor for updates.
CVE-2018-3581
The CVE concerns the WLAN driver in CAF Android builds (Android for MSM, Firefox OS for MSM, QRD Android) on Linux kernel platforms. The issue is a buffer overwrite that occurs when the vdev_id received from firmware exceeds max_bssid. This is described across multiple sources (NVD entry CVE-2018...
CVE-2018-3582
CVE-2018-3582 is a buffer overflow in Qualcomm WLAN affecting Android Pixel/Nexus devices, stemming from improper input validation in WMA event handling. The vulnerability is classified as Elevation of Privilege (EoP) with a Medium impact in the Android/Qualcomm WLAN component. Connected sources ...
CVE-2018-3586
CVE-2018-3586 describes an integer overflow that can overflow to a buffer overflow in the ADSPRPC heap manager used by CAF Qualcomm components on Android (Android for MSM, Firefox OS for MSM, QRD Android) running the Linux kernel. Affected: Qualcomm ADSPRPC heap manager within CAF Android builds....
CVE-2018-9436
CVE-2018-9436: An out-of-bounds read due to a missing bounds check in bnep_data_ind of bnep_main.cc could allow remote information disclosure on Android devices. Affected versions: Android 6.0–6.0.1, 7.0–7.1.2, 8.0–8.1. Impact: information disclosure without extra privileges or user interaction. ...
CVE-2018-9480
CVE-2018-9480 describes an out-of-bounds read in bta_hd_get_report_act (bta_hd_act.cc) that could enable remote information disclosure via the Bluetooth service without user interaction. The issue stems from improper input validation. Documented details appear in NVD/Red Hat entries and the Andro...
CVE-2018-9484
CVE-2018-9484 describes an out-of-bounds read in the Android Bluetooth L2CAP implementation: in l2cu_send_peer_config_rej within l2c_utils.cc, a missing bounds check can cause a remote information disclosure without requiring privileges or user interaction. The issue is labeled with a HIGH severi...
CVE-2018-9485
CVE-2018-9485 affects the Android Bluetooth stack: in l2cble_process_sig_cmd of l2c_ble.cc there is an out-of-bounds read caused by a missing bounds check. This could lead to remote information disclosure over Bluetooth with no user interaction or extra privileges required. Attack vector is adjac...
CVE-2018-9487
CVE-2018-9487 affects Android components (Vpn.java: setVpnForcedLocked) where a bad UID check could block internet traffic through VPN, causing a local denial of service. Impact per available data: LOCAL attack vector with HIGH availability impact; UI interaction required for exploitation. CVSS m...
CVE-2018-9506
CVE-2018-9506: In avrc_msg_cback of avrc_api.cc there is an out-of-bounds read due to a missing bounds check, enabling remote information disclosure over Bluetooth with no extra privileges. Affected: Android versions listed in the NVD entry (7.0–9.0). The connected documents confirm the root caus...
CVE-2018-9513
CVE-2018-9513 describes a local privilege escalation in the Android kernel due to a memory corruption issue from a double free in the copy_process path of fork.c. The vulnerability allows a local attacker to escalate privileges without user interaction, by exploiting a double release/memory corru...
CVE-2018-9556
CVE-2018-9556 affects Android 9, where ParsePayloadHeader in payload_metadata.cc may overflow an integer, causing an out-of-bounds write and remote escalation of privilege with no user interaction. Exploitation details are not provided in the connected documents. The Android Security Bulletin not...
CVE-2018-9565
CVE-2018-9565 affects Android 9 (Pie). The vulnerability is in readBytes of xltdecwbxml.c, caused by an integer overflow that can trigger an out-of-bounds read. This may enable remote information disclosure without extra execution privileges and without user interaction. Exploitation details are ...
CVE-2018-9573
Affected software: Android 9. Root cause: out-of-bounds write in impd_parse_filt_block within impd_drc_dynamic_payload.c due to missing bounds checks. Impact: remote code execution with high severity (user interaction required; NULL/LOCAL aspects per CVE). Exploitability: explicit exploitation de...
CVE-2019-2030
CVE-2019-2030 is an Android 9 local Elevation of Privilege flaw: a use-after-free in removeInterfaceAddress within NetworkController.cpp that could allow remote code execution in the context of a privileged process without user interaction. The Android security bulletin groups this under System v...
CVE-2019-20532
CVE-2019-20532 affects Samsung mobile devices running O(8.x), P(9.0) and Q(10.0). The issue allows attackers to access Developer options without authentication, linked to Samsung’s SVE-2019-15800 identifier. The connected documents corroborate the symptom but do not provide concrete remediation d...
CVE-2019-20548
CVE-2019-20548 affects Samsung mobile devices with P(9.0) software on Qualcomm chipsets. The root cause is a buffer overflow in the bootloader , enabling potential arbitrary execution on affected devices. The vulnerability has a high to critical impact profile (NVD CVSS v3.1: 9.8, network attack ...
CVE-2019-20568
CVE-2019-20568 describes a race condition leading to a Use-After-Free on Samsung mobile devices running O(8.x) and P(9.0) (Exynos and Qualcomm chipsets). The Samsung internal ID is SVE-2019-15067. Connected sources reaffirm the issue but do not provide concrete exploit details, affected component...
CVE-2019-20570
CVE-2019-20570 affects Samsung mobile devices running Android versions P (9.0), O (8.0), and N (7.1), where attackers can bypass Factory Reset Protection (FRP) using Smart Switch. The Red Hat, ENISA, CNVD, and other connected feeds corroborate the same FRP-bypass issue, identifying the Samsung ID...
CVE-2019-20594
Affected software/hardware: Samsung mobile devices with O(8.1) and P(9.0) on Exynos chipsets. Vulnerability: a heap overflow in the bootloader. Root cause: heap overflow in bootloader code (unspecified module) leading to potential impact on device integrity. Impact: Partial to high in CVSS terms ...
CVE-2019-20601
CVE-2019-20601 affects Samsung mobile devices running N(7.x), O(8.x), and P(9.0) with Exynos 7570/7580/7870/7880/8890, where RKP memory corruption results in an arbitrary write to protected memory. The issue, tracked under Samsung ID SVE-2019-13921-2 (May 2019), is documented across multiple sour...
CVE-2019-20625
Summary: CVE-2019-20625 affects Samsung mobile devices with N(7.1) and O(8.x) (Exynos chipsets). The issue is due to the ion debugfs driver, which can disclose information. The Samsung internal identifier is SVE-2018-13427 (Feb 2019). What’s affected / root cause: An information disclosure flaw i...
CVE-2019-2142
The CVE-2019-2142 entry affects Android 10, specifically the libxaac library. The vulnerability is an information-disclosure flaw caused by a missing bounds check that could trigger an out-of-bounds read. Exploitation requires user interaction, and successful exploitation could disclose partial t...
CVE-2019-2190
CVE-2019-2190 affects LG's LAF component in the Android kernel, where a missing bounds check in a protected disk partition can cause local information disclosure via USB. Exploitation requires user privileges but not user interaction. The vulnerability is documented across multiple sources (NVD, ...
CVE-2019-2193
CVE-2019-2193 affects Android 8.0–10 where a partially provisioned Device Policy Client in WelcomeActivity.java could bypass permissions, enabling local escalation of privilege and leaving an Admin app installed without user notification. Exploitation is described as local with no user interactio...
CVE-2019-2195
The CVE-2019-2195 issue affects Android, described as an input-validation flaw in tokenize of sqlite3_android.cpp that allows an attacker-controlled INSERT statement. This leads to local elevation of privilege with no additional execution privileges required and no user interaction needed. Produc...
CVE-2019-9235
CVE-2019-9235 affects Android 10 NFC functionality. The issue is an out-of-bounds read caused by a missing bounds check in NFC, enabling local information disclosure with user interaction required for exploitation. Impact is described as partial confidentiality loss with no privilege escalation. ...