Lucene search

K

614 matches found

CVE
CVE
added 2018/03/30 9:29 p.m.38 views

CVE-2017-9692

When an atomic commit is issued on a writeback panel with a NULL output_layer parameter in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-03, a NULL pointer dereference may potentially occur.

7.8CVSS7.4AI score0.00046EPSS
CVE
CVE
added 2018/09/18 6:29 p.m.38 views

CVE-2018-11297

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, a buffer over-read can occur In the WMA NDP event handler functions due to lack of validation of input value event_info which is received from FW.

7.8CVSS7.4AI score0.00023EPSS
CVE
CVE
added 2018/05/17 10:29 p.m.38 views

CVE-2018-3567

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, a buffer overflow vulnerability exists in WLAN while processing the HTT_T2H_MSG_TYPE_PEER_MAP or HTT_T2H_MSG_TYPE_PEER_UNMAP messages.

7.8CVSS7.4AI score0.00019EPSS
CVE
CVE
added 2018/06/12 8:29 p.m.38 views

CVE-2018-3582

Buffer overflow can occur due to improper input validation in multiple WMA event handler functions in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.

7.8CVSS7.4AI score0.00019EPSS
CVE
CVE
added 2018/05/17 10:29 p.m.38 views

CVE-2018-5827

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, a buffer overflow vulnerability exists in WLAN while processing an extscan hotlist event.

7.8CVSS7.4AI score0.00019EPSS
CVE
CVE
added 2018/04/03 5:29 p.m.38 views

CVE-2018-5828

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function wma_extscan_start_stop_event_handler(), vdev_id comes from the variable event from firmware and is not properly validated po...

7.8CVSS7.2AI score0.00016EPSS
CVE
CVE
added 2018/11/27 6:0 p.m.38 views

CVE-2018-5909

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, buffer overflow occur may occur in display handlers due to lack of checking in buffer size before copying into it and will lead to memory corruption.

7.8CVSS7.6AI score0.00019EPSS
CVE
CVE
added 2018/11/06 5:29 p.m.38 views

CVE-2018-9427

In CopyToOMX of OMXNodeInstance.cpp there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-8.0 Androi...

9.3CVSS7.4AI score0.03058EPSS
CVE
CVE
added 2018/11/06 5:29 p.m.38 views

CVE-2018-9451

In DynamicRefTable::load of ResourceTypes.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6....

5.5CVSS5.3AI score0.00095EPSS
CVE
CVE
added 2018/10/02 7:29 p.m.38 views

CVE-2018-9493

In the content provider of the download manager, there is a possible SQL injection due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7....

5.5CVSS5.5AI score0.00464EPSS
CVE
CVE
added 2018/10/02 7:29 p.m.38 views

CVE-2018-9497

In impeg2_fmt_conv_yuv420p_to_yuv420sp_uv_av8 of impeg2_format_conv.s there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions:...

9.3CVSS7.9AI score0.00422EPSS
CVE
CVE
added 2018/10/02 7:29 p.m.38 views

CVE-2018-9504

In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution over bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: And...

8.8CVSS8.8AI score0.00694EPSS
CVE
CVE
added 2018/10/02 7:29 p.m.38 views

CVE-2018-9505

In mca_ccb_hdl_req of mca_cact.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Androi...

6.5CVSS6.1AI score0.00312EPSS
CVE
CVE
added 2018/10/02 7:29 p.m.38 views

CVE-2018-9506

In avrc_msg_cback of avrc_api.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-...

6.5CVSS6.1AI score0.00646EPSS
CVE
CVE
added 2018/11/14 6:29 p.m.38 views

CVE-2018-9524

In functionality implemented in System UI, there are insufficient protections implemented around overlay windows. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 And...

7.8CVSS8.1AI score0.00019EPSS
CVE
CVE
added 2018/11/14 6:29 p.m.38 views

CVE-2018-9526

In device configuration data, there is an improperly configured setting. This could lead to remote disclosure of device location. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112159033

7.5CVSS7.2AI score0.0029EPSS
CVE
CVE
added 2018/12/06 2:29 p.m.38 views

CVE-2018-9547

In unflatten of GraphicBuffer.cpp, there is a possible bad fd close due to improper input validation. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: An...

7.8CVSS7.6AI score0.00022EPSS
CVE
CVE
added 2018/04/20 9:29 p.m.37 views

CVE-2014-0900

The Device Administrator code in Android before 4.4.1_r1 might allow attackers to spoof device administrators and consequently bypass MDM restrictions by leveraging failure to update the mAdminMap data structure.

8.8CVSS8.4AI score0.00153EPSS
CVE
CVE
added 2018/04/04 6:29 p.m.37 views

CVE-2014-9954

An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-36388559.

10CVSS8.7AI score0.00585EPSS
CVE
CVE
added 2018/04/04 6:29 p.m.37 views

CVE-2015-9012

An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-36384691.

10CVSS8.8AI score0.00585EPSS
CVE
CVE
added 2018/04/04 6:29 p.m.37 views

CVE-2015-9014

An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-36393750.

10CVSS8.8AI score0.00585EPSS
CVE
CVE
added 2018/03/30 3:29 p.m.37 views

CVE-2017-11010

In Android before 2018-01-05 on Qualcomm Snapdragon IoT, Snapdragon Mobile MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 625, SD 650/52, SD 835, access control left a configuration space unprotected.

10CVSS8.3AI score0.00585EPSS
CVE
CVE
added 2018/01/10 10:29 p.m.37 views

CVE-2017-11066

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while flashing ubi image an uninitialized memory could be accessed.

7.5CVSS7AI score0.00123EPSS
CVE
CVE
added 2018/01/10 10:29 p.m.37 views

CVE-2017-11079

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing sparse image, uninitialized heap memory can potentially be flashed due to the lack of validation of sparse image block header size.

9.8CVSS7.8AI score0.00173EPSS
CVE
CVE
added 2018/01/10 10:29 p.m.37 views

CVE-2017-11080

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a user supplied sparse image, a buffer overflow vulnerability could occur if the sparse header block size is equal to 4294967296.

7.8CVSS7.3AI score0.00017EPSS
CVE
CVE
added 2018/01/10 10:29 p.m.37 views

CVE-2017-11081

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a potential buffer overflow vulnerability in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs as buffers defined in this API can hold maximum 32 bytes...

7.8CVSS7.4AI score0.00017EPSS
CVE
CVE
added 2018/01/12 11:29 p.m.37 views

CVE-2017-13183

In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. This could lead to a local elevation of privilege enabling code execution as a privileged process with n...

7CVSS7.1AI score0.00034EPSS
CVE
CVE
added 2018/01/12 11:29 p.m.37 views

CVE-2017-13212

An elevation of privilege vulnerability in the Android system (systemui). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62187985.

7.8CVSS7.4AI score0.00028EPSS
CVE
CVE
added 2018/01/12 11:29 p.m.37 views

CVE-2017-13213

An elevation of privilege vulnerability in the Broadcom bcmdhd driver. Product: Android. Versions: Android kernel. Android ID: A-63374465. References: B-V2017081501.

7.8CVSS7.4AI score0.00028EPSS
CVE
CVE
added 2018/02/12 7:29 p.m.37 views

CVE-2017-13231

In libmediadrm, there is an out-of-bounds write due to improper input validation. This could lead to local elevation of privileges with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-67962232.

7.8CVSS7.5AI score0.00021EPSS
CVE
CVE
added 2018/04/04 5:29 p.m.37 views

CVE-2017-13270

A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69474744.

7.5CVSS6.9AI score0.00102EPSS
CVE
CVE
added 2018/04/04 4:29 p.m.37 views

CVE-2017-13296

A information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-70897454.

5.3CVSS4.8AI score0.00091EPSS
CVE
CVE
added 2018/04/04 4:29 p.m.37 views

CVE-2017-13297

A information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-71766721.

5.3CVSS4.8AI score0.00091EPSS
CVE
CVE
added 2018/03/16 10:29 p.m.37 views

CVE-2017-14887

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the processing of messages of type eWNI_SME_MODIFY_ADDITIONAL_IES, an integer overflow leading to heap buffer overflow may potentially occur.

7.8CVSS7.4AI score0.00017EPSS
CVE
CVE
added 2018/03/16 10:29 p.m.37 views

CVE-2017-15814

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in msm_flash_subdev_do_ioctl of drivers/media/platform/msm/camera_v2/sensor/flash/msm_flash.c, there is a possible out of bounds read if flash_data.cfg_type is CFG_FLASH_INIT due to impro...

4.4CVSS4.5AI score0.00018EPSS
CVE
CVE
added 2018/02/23 11:29 p.m.37 views

CVE-2017-15817

In all Qualcomm products with Android releases from CAF using the Linux kernel, when an access point sends a challenge text greater than 128 bytes, the host driver is unable to validate this potentially leading to authentication failure.

9.3CVSS6.4AI score0.00153EPSS
CVE
CVE
added 2018/03/15 9:29 p.m.37 views

CVE-2017-15821

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the function wma_p2p_noa_event_handler(), there is no bound check on a value coming from firmware which can potentially lead to a buffer overwrite.

7.8CVSS7.2AI score0.00028EPSS
CVE
CVE
added 2018/12/07 2:29 p.m.37 views

CVE-2017-15835

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, While processing the RIC Data Descriptor IE in an artificially crafted 802.11 frame with IE length more than 255, an infinite loop may potentially occur resulting in a denial of service.

6.5CVSS6.3AI score0.00038EPSS
CVE
CVE
added 2018/04/03 5:29 p.m.37 views

CVE-2017-15853

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while processing PTT commands, ptt_sock_send_msg_to_app() is invoked without validating the packet length. If the packet length is inval...

5.3CVSS5AI score0.00091EPSS
CVE
CVE
added 2018/03/15 9:29 p.m.37 views

CVE-2017-18056

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper input validation for vdev_id in wma_unified_bcntx_status_event_handler() which is received from firmware leads to potential out of bounds memory read.

7.8CVSS7.1AI score0.00016EPSS
CVE
CVE
added 2018/03/16 10:29 p.m.37 views

CVE-2017-18066

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, improper controls in MSM CORE leads to use memory after it is freed in msm_core_ioctl().

7.8CVSS7.1AI score0.00016EPSS
CVE
CVE
added 2018/05/10 2:29 p.m.37 views

CVE-2017-6293

In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 TZ contains a vulnerability in Widevine TA where the software writes data past the end, or before the beginning, of the intended buffer, which may lead to escalation of Privileges. This issue is rated as high. Android: A-6937736...

7.8CVSS5.3AI score0.00016EPSS
CVE
CVE
added 2018/11/27 6:0 p.m.37 views

CVE-2018-11260

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a fast Initial link setup (FILS) connection request, integer overflow may lead to a buffer overflow when the key length is zero.

7.8CVSS6.8AI score0.00054EPSS
CVE
CVE
added 2018/09/18 6:29 p.m.37 views

CVE-2018-11852

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper check In the WMA API for the inputs received from the firmware and then fills the same to the host structure will lead to OOB write.

7.8CVSS7.4AI score0.00015EPSS
CVE
CVE
added 2018/09/19 2:29 p.m.37 views

CVE-2018-11878

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, possibility of invalid memory access while processing driver command in WLAN function.

7.8CVSS7.5AI score0.00038EPSS
CVE
CVE
added 2018/12/20 3:29 p.m.37 views

CVE-2018-11985

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, When allocating heap using user supplied size, Possible heap overflow vulnerability due to integer overflow in roundup to native pointer.

7.8CVSS7.5AI score0.00019EPSS
CVE
CVE
added 2018/04/03 5:29 p.m.37 views

CVE-2018-5826

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, due to a race condition, a Use After Free condition can occur in the WLAN driver.

5.9CVSS5.4AI score0.00112EPSS
CVE
CVE
added 2018/07/06 5:29 p.m.37 views

CVE-2018-5834

In __wlan_hdd_cfg80211_vendor_scan(), a buffer overwrite can potentially occur in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05.

7.8CVSS7.4AI score0.00073EPSS
CVE
CVE
added 2018/07/06 5:29 p.m.37 views

CVE-2018-5890

If the fdt_totalsize is reported as 0 for the current device tree, it bypasses an error check for a valid device tree in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05.

7.8CVSS7.2AI score0.00016EPSS
CVE
CVE
added 2018/11/27 6:0 p.m.37 views

CVE-2018-5904

In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while list traversal in LPM status driver for clean up, use after free vulnerability may occur.

7.8CVSS7.5AI score0.00038EPSS
Total number of security vulnerabilities614