Lucene search

K

930 matches found

CVE
CVE
added 2017/08/18 6:29 p.m.59 views

CVE-2016-10381

In all Qualcomm products with Android releases from CAF using the Linux kernel, the UE can send unprotected MeasurementReports revealing UE location.

10CVSS8.8AI score0.00252EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.59 views

CVE-2023-21294

In Slice, there is a possible disclosure of installed packages due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.8AI score0.00017EPSS
CVE
CVE
added 2016/05/05 9:59 p.m.58 views

CVE-2016-2059

The msm_ipc_router_bind_control_port function in net/ipc_router/ipc_router_core.c in the IPC router kernel module for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify that a port is a client port, which allo...

7CVSS7.4AI score0.00036EPSS
CVE
CVE
added 2016/08/05 8:59 p.m.58 views

CVE-2016-3857

The kernel in Android before 2016-08-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 28522518.

9.3CVSS7.2AI score0.00068EPSS
CVE
CVE
added 2023/10/30 6:15 p.m.58 views

CVE-2023-21387

In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

4.4CVSS4.8AI score0.00006EPSS
CVE
CVE
added 2012/08/29 10:56 a.m.57 views

CVE-2012-3979

Mozilla Firefox before 15.0 on Android does not properly implement unspecified callers of the __android_log_print function, which allows remote attackers to execute arbitrary code via a crafted web page that calls the JavaScript dump function.

6.8CVSS7.4AI score0.01477EPSS
CVE
CVE
added 2017/05/12 3:29 p.m.57 views

CVE-2016-10276

An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the o...

9.3CVSS7.2AI score0.00043EPSS
CVE
CVE
added 2016/01/31 6:59 p.m.57 views

CVE-2016-1943

Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via the scrollTo method.

4.7CVSS6.3AI score0.00556EPSS
CVE
CVE
added 2017/04/12 10:59 p.m.57 views

CVE-2016-5856

Drivers/soc/qcom/spcom.c in the Qualcomm SPCom driver in the Android kernel 2017-03-05 allows local users to gain privileges, a different vulnerability than CVE-2016-5857.

7.6CVSS6.8AI score0.0005EPSS
CVE
CVE
added 2024/11/27 8:15 p.m.57 views

CVE-2017-13316

In checkPermissions of RecognitionService.java, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

8.4CVSS8.5AI score0.00008EPSS
CVE
CVE
added 2015/09/22 10:59 a.m.56 views

CVE-2015-6676

Buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspec...

10CVSS7.7AI score0.02752EPSS
CVE
CVE
added 2017/05/12 3:29 p.m.56 views

CVE-2017-0604

An elevation of privilege vulnerability in the kernel Qualcomm power driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflash...

9.3CVSS7.2AI score0.00043EPSS
CVE
CVE
added 2017/05/12 3:29 p.m.56 views

CVE-2017-0620

An elevation of privilege vulnerability in the Qualcomm Secure Channel Manager driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Ver...

7.6CVSS6.6AI score0.00052EPSS
CVE
CVE
added 2024/12/04 6:15 p.m.56 views

CVE-2018-9395

In mtk_cfg80211_vendor_packet_keep_alive_start and mtk_cfg80211_vendor_set_config of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_vendor.c, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges need...

7.8CVSS6.8AI score0.00018EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.55 views

CVE-2015-3837

The OpenSSLX509Certificate class in org/conscrypt/OpenSSLX509Certificate.java in Android before 5.1.1 LMY48I improperly includes certain context data during serialization and deserialization, which allows attackers to execute arbitrary code via an application that sends a crafted Intent, aka intern...

9.3CVSS7.5AI score0.00792EPSS
CVE
CVE
added 2016/01/31 6:59 p.m.55 views

CVE-2016-1948

Mozilla Firefox before 44.0 on Android does not ensure that HTTPS is used for a lightweight-theme installation, which allows man-in-the-middle attackers to replace a theme's images and colors by modifying the client-server data stream.

5.3CVSS5.9AI score0.00219EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.55 views

CVE-2017-0439

An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.6AI score0.00137EPSS
CVE
CVE
added 2024/11/27 10:15 p.m.55 views

CVE-2017-13323

In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege in an unprivileged process with no additional execution privileges needed. User interaction is not needed for exploitation.

8.4CVSS8.3AI score0.00026EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.55 views

CVE-2023-21331

In InputMethod, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.6AI score0.00031EPSS
CVE
CVE
added 2015/12/08 11:59 p.m.54 views

CVE-2015-6616

mediaserver in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 24630158 and 23882800, a different vulnerability than CVE-2015-8505, CVE-2015-8506, and...

9.3CVSS7.6AI score0.01816EPSS
CVE
CVE
added 2015/09/22 10:59 a.m.54 views

CVE-2015-6678

Buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspec...

10CVSS7.7AI score0.02752EPSS
CVE
CVE
added 2024/12/05 12:15 a.m.54 views

CVE-2018-9404

In oemCallback of ril.cpp, there is a possible out of bounds write due to aninteger overflow. This could lead to local escalation of privilege withSystem execution privileges needed. User interaction is not needed forexploitation.

7.8CVSS6.8AI score0.00018EPSS
CVE
CVE
added 2024/12/02 9:15 p.m.54 views

CVE-2018-9414

In gattServerSendResponseNative of com_android_bluetooth_gatt.cpp, there is a possible out of bounds stack write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS6.9AI score0.0001EPSS
CVE
CVE
added 2024/12/02 10:15 p.m.54 views

CVE-2018-9418

In handle_app_cur_val_response of dtif_rc.cc, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8CVSS7.1AI score0.00056EPSS
CVE
CVE
added 2023/10/30 6:15 p.m.54 views

CVE-2023-21382

In Content Resolver, there is a possible method to access metadata about existing content providers on the device due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.2AI score0.00014EPSS
CVE
CVE
added 2023/10/30 6:15 p.m.54 views

CVE-2023-21392

In Bluetooth, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege when connecting to a Bluetooth device with no additional execution privileges needed. User interaction is not needed for exploitation.

8.8CVSS8.4AI score0.00054EPSS
CVE
CVE
added 2012/10/07 3:55 p.m.53 views

CVE-2011-3918

The Zygote process in Android 4.0.3 and earlier accepts fork requests from processes with arbitrary UIDs, which allows remote attackers to cause a denial of service (reboot loop) via a crafted application.

7.8CVSS6.7AI score0.10066EPSS
CVE
CVE
added 2016/08/05 8:59 p.m.53 views

CVE-2016-2504

The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026365 and Qualcomm internal bug CR1002974.

7.8CVSS7.4AI score0.00014EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.53 views

CVE-2017-0433

An elevation of privilege vulnerability in the Synaptics touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the touchscreen chipset. This issue is rated as High because it first requires compromising a privileged process. Product: Android. ...

7.6CVSS6.6AI score0.0012EPSS
CVE
CVE
added 2017/05/12 3:29 p.m.53 views

CVE-2017-0625

An information disclosure vulnerability in the MediaTek command queue driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android. ...

5.5CVSS5AI score0.00072EPSS
CVE
CVE
added 2024/12/04 6:15 p.m.53 views

CVE-2018-9393

In procfile_write of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_proc.c, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS6.8AI score0.00018EPSS
CVE
CVE
added 2024/12/04 10:15 p.m.53 views

CVE-2018-9396

In rpc_msg_handler and related handlers of drivers/misc/mediatek/eccci/port_rpc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS6.9AI score0.00018EPSS
CVE
CVE
added 2022/12/08 4:15 p.m.53 views

CVE-2022-39913

Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information.

6.8CVSS3.9AI score0.00023EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.53 views

CVE-2023-21367

In Scudo, there is a possible way to exploit certain heap OOB read/write issues due to an insecure implementation/design. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.8AI score0.00015EPSS
CVE
CVE
added 2024/11/11 9:15 p.m.53 views

CVE-2024-46964

The com.video.downloader.all (aka All Video Downloader) application through 11.28 for Android allows an attacker to execute arbitrary JavaScript code via the com.video.downloader.all.StartActivity component.

8.1CVSS7.8AI score0.00061EPSS
CVE
CVE
added 2014/05/14 12:55 a.m.52 views

CVE-2010-4832

Android OS before 2.2 does not display the correct SSL certificate in certain cases, which might allow remote attackers to spoof trusted web sites via a web page containing references to external sources in which (1) the certificate of the last loaded resource is checked, instead of for the main pa...

4.3CVSS6.7AI score0.00187EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.52 views

CVE-2014-9786

Heap-based buffer overflow in drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28557260 and Qualcomm int...

9.3CVSS7.7AI score0.00076EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.52 views

CVE-2015-3832

Multiple buffer overflows in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via invalid size values of NAL units in MP4 data, aka internal bug 19641538.

10CVSS8AI score0.0683EPSS
CVE
CVE
added 2015/12/08 11:59 p.m.52 views

CVE-2015-6626

libstagefright in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 243...

5CVSS6.8AI score0.0012EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.52 views

CVE-2017-0427

An elevation of privilege vulnerability in the kernel file system could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the op...

9.3CVSS7.2AI score0.0012EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.52 views

CVE-2017-0445

An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3....

7.6CVSS6.6AI score0.0012EPSS
CVE
CVE
added 2024/12/05 12:15 a.m.52 views

CVE-2018-9400

In gt1x_debug_write_proc and gt1x_tool_write ofdrivers/input/touchscreen/mediatek/GT1151/gt1x_generic.c and gt1x_tools.c,there is a possible out of bounds write due to a missing bounds check. Thiscould lead to local escalation of privilege with System execution privilegesneeded. User interaction is...

7.8CVSS6.9AI score0.00018EPSS
CVE
CVE
added 2024/12/05 12:15 a.m.52 views

CVE-2018-9403

In the MTK_FLP_MSG_HAL_DIAG_REPORT_DATA_NTF handler of flp2hal_-interface.c, there is a possible stack buffer overflow due to a missingbounds check. This could lead to local escalation of privilege in aprivileged process with System execution privileges needed. User interactionis not needed for exp...

7.8CVSS7.2AI score0.00022EPSS
CVE
CVE
added 2024/12/05 12:15 a.m.52 views

CVE-2018-9462

In store_cmd of ftm4_pdc.c, there is a possible out of bounds write due toan incorrect bounds check. This could lead to local escalation of privilegewith System execution privileges needed. User interaction is not needed forexploitation.

7.8CVSS6.7AI score0.00018EPSS
CVE
CVE
added 2023/10/30 6:15 p.m.52 views

CVE-2023-21377

In SELinux Policy, there is a possible restriction bypass due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.8AI score0.00007EPSS
CVE
CVE
added 2013/02/05 3:55 p.m.51 views

CVE-2011-1350

The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device.

7.1CVSS5.8AI score0.04051EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.51 views

CVE-2015-3826

The MPEG4Extractor::parse3GPPMetaData function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not enforce a minimum size for UTF-16 strings containing a Byte Order Mark (BOM), which allows remote attackers to cause a denial of service (integer underflow, buffer over-rea...

5CVSS6.8AI score0.27175EPSS
CVE
CVE
added 2016/01/31 6:59 p.m.51 views

CVE-2016-1940

Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via a data: URL that is mishandled during (1) shortcut opening or (2) BOOKMARK intent processing.

5.3CVSS5.8AI score0.00322EPSS
CVE
CVE
added 2016/05/09 10:59 a.m.51 views

CVE-2016-2060

server/TetherController.cpp in the tethering controller in netd, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly validate upstream interface names, which allows attackers to bypass intended access restrictions via a c...

9.3CVSS7.3AI score0.00044EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.51 views

CVE-2017-0436

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.6AI score0.00137EPSS
Total number of security vulnerabilities930