Lucene search

K

930 matches found

CVE
CVE
added 2015/11/03 11:59 a.m.47 views

CVE-2015-6611

mediaserver in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, aka internal bugs 23905951, 23912202, 23953967, 23696300, 23600291, 23756261, 23541506, 232...

5CVSS6.6AI score0.00117EPSS
CVE
CVE
added 2015/12/08 11:59 p.m.47 views

CVE-2015-6617

Skia, as used in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23648740.

9.3CVSS9.2AI score0.00934EPSS
CVE
CVE
added 2017/05/12 3:29 p.m.47 views

CVE-2016-10281

An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: N/A. And...

7.6CVSS6.6AI score0.00043EPSS
CVE
CVE
added 2017/01/12 11:59 p.m.47 views

CVE-2016-6492

The MT6573FDVT_SetRegHW function in camera_fdvt.c in the MediaTek driver for Linux allows local users to gain privileges via a crafted application that makes an MT6573FDVTIOC_T_SET_FDCONF_CMD IOCTL call.

9.3CVSS7.6AI score0.00058EPSS
CVE
CVE
added 2017/05/02 9:59 p.m.47 views

CVE-2017-0331

An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the o...

9.3CVSS7.2AI score0.00065EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.47 views

CVE-2017-0429

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the ope...

9.3CVSS7.2AI score0.00135EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.47 views

CVE-2017-0444

An elevation of privilege vulnerability in the Realtek sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10...

7.6CVSS6.6AI score0.00139EPSS
CVE
CVE
added 2017/04/07 10:59 p.m.47 views

CVE-2017-0565

An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: N/A. And...

7.6CVSS6.9AI score0.00084EPSS
CVE
CVE
added 2017/09/08 8:29 p.m.47 views

CVE-2017-0796

A elevation of privilege vulnerability in the MediaTek auxadc driver. Product: Android. Versions: Android kernel. Android ID: A-62458865. References: M-ALPS03353884, M-ALPS03353886, M-ALPS03353887.

9.3CVSS8AI score0.00035EPSS
CVE
CVE
added 2017/09/21 3:29 p.m.47 views

CVE-2017-11041

In all Qualcomm products with Android releases from CAF using the Linux kernel, an output buffer is accessed in one thread and can be potentially freed in another.

9.3CVSS7.5AI score0.00145EPSS
CVE
CVE
added 2024/12/02 9:15 p.m.47 views

CVE-2018-9413

In handle_notification_response of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.

8.8CVSS6.8AI score0.00033EPSS
CVE
CVE
added 2023/10/30 6:15 p.m.47 views

CVE-2023-21391

In Messaging, there is a possible way to disable the messaging application due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5CVSS7.8AI score0.00964EPSS
CVE
CVE
added 2024/10/25 11:15 a.m.47 views

CVE-2024-47022

Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656.

7.5CVSS6.2AI score0.00024EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.46 views

CVE-2014-7915

Integer overflow in SampleTable.cpp in libstagefright in Android before 5.0.0 has unspecified impact and attack vectors, aka internal bug 15328708.

10CVSS6.9AI score0.00218EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.46 views

CVE-2014-9780

drivers/video/msm/mdss/mdp3_ctrl.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5, 5X, and 6P devices does not validate start and length values, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28602014 and Qualcomm internal bug CR542...

9.3CVSS7.5AI score0.0007EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.46 views

CVE-2014-9801

Multiple integer overflows in lib/libfdt/fdt_rw.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28822060 and Qualcomm internal bug CR705078.

9.3CVSS7.5AI score0.00145EPSS
CVE
CVE
added 2017/05/16 2:29 p.m.46 views

CVE-2014-9936

In TrustZone a time-of-check time-of-use race condition could potentially exist in an authentication routine in all Android releases from CAF using the Linux kernel.

7.6CVSS6.8AI score0.00098EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.46 views

CVE-2015-3827

The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not validate the relationship between chunk sizes and skip sizes, which allows remote attackers to execute arbitrary code or cause a denial of service (integer underflow and memory co...

9.3CVSS7.8AI score0.12431EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.46 views

CVE-2015-3828

The MPEG4Extractor::parse3GPPMetaData function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not enforce a minimum size for UTF-16 strings containing a Byte Order Mark (BOM), which allows remote attackers to execute arbitrary code or cause a denial of service (integer ...

10CVSS8AI score0.27175EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.46 views

CVE-2015-3836

The Parse_wave function in arm-wt-22k/lib_src/eas_mdls.c in the Sonivox DLS-to-EAS converter in Android before 5.1.1 LMY48I does not reject a negative value for a certain size field, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via crafted X...

10CVSS8AI score0.04344EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.46 views

CVE-2015-3849

The Region_createFromParcel function in core/jni/android/graphics/Region.cpp in Region in Android before 5.1.1 LMY48M does not check the return values of certain read operations, which allows attackers to execute arbitrary code via an application that sends a crafted message to a service, aka inter...

9.3CVSS7.5AI score0.00521EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.46 views

CVE-2015-3860

packages/Keyguard/res/layout/keyguard_password_view.xml in Lockscreen in Android 5.x before 5.1.1 LMY48M does not restrict the number of characters in the passwordEntry input field, which allows physically proximate attackers to bypass intended access restrictions via a long password that triggers ...

7.2CVSS6.8AI score0.00042EPSS
CVE
CVE
added 2015/10/06 5:59 p.m.46 views

CVE-2015-3875

libutils in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted audio file, aka internal bug 22952485.

10CVSS7.7AI score0.02357EPSS
CVE
CVE
added 2015/11/03 11:59 a.m.46 views

CVE-2015-6608

mediaserver in Android 5.x before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 19779574, 23680780, 23876444, and 23658148, a different vulnerability than CVE-2015...

10CVSS7.6AI score0.03758EPSS
CVE
CVE
added 2015/11/03 11:59 a.m.46 views

CVE-2015-6609

libutils in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted audio file, aka internal bug 22953624.

10CVSS7.8AI score0.05925EPSS
CVE
CVE
added 2015/12/08 11:59 p.m.46 views

CVE-2015-6632

libstagefright in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 243...

5CVSS6.8AI score0.0012EPSS
CVE
CVE
added 2015/12/08 11:59 p.m.46 views

CVE-2015-6633

The display drivers in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23987307.

9.3CVSS7.9AI score0.00688EPSS
CVE
CVE
added 2017/08/18 6:29 p.m.46 views

CVE-2015-8593

In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in 1x call processing.

10CVSS9AI score0.00181EPSS
CVE
CVE
added 2017/05/12 3:29 p.m.46 views

CVE-2016-10275

An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the o...

9.3CVSS7.2AI score0.00052EPSS
CVE
CVE
added 2017/08/18 6:29 p.m.46 views

CVE-2016-10385

In all Qualcomm products with Android releases from CAF using the Linux kernel, a use-after-free vulnerability exists in IMS RCS.

10CVSS8.8AI score0.00252EPSS
CVE
CVE
added 2017/01/12 8:59 p.m.46 views

CVE-2017-0399

An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive ...

5.5CVSS5.2AI score0.00091EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.46 views

CVE-2017-0434

An elevation of privilege vulnerability in the Synaptics touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the touchscreen chipset. This issue is rated as High because it first requires compromising a privileged process. Product: Android. ...

7.6CVSS6.6AI score0.00137EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.46 views

CVE-2017-0435

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.6AI score0.00145EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.46 views

CVE-2017-0437

An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.6AI score0.00137EPSS
CVE
CVE
added 2017/02/08 3:59 p.m.46 views

CVE-2017-0441

An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.6AI score0.00137EPSS
CVE
CVE
added 2017/09/08 8:29 p.m.46 views

CVE-2017-0802

A elevation of privilege vulnerability in the MediaTek kernel. Product: Android. Versions: Android kernel. Android ID: A-36232120. References: M-ALPS03384818.

7.8CVSS8AI score0.00083EPSS
CVE
CVE
added 2017/09/21 3:29 p.m.46 views

CVE-2017-11000

In all Qualcomm products with Android releases from CAF using the Linux kernel, in an ISP Camera kernel driver function, an incorrect bounds check may potentially lead to an out-of-bounds write.

7.8CVSS7.6AI score0.00083EPSS
CVE
CVE
added 2017/09/21 3:29 p.m.46 views

CVE-2017-11002

In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing a vendor sub-command, a buffer over-read can occur.

5.5CVSS6.1AI score0.00096EPSS
CVE
CVE
added 2017/09/21 3:29 p.m.46 views

CVE-2017-8251

In all Qualcomm products with Android releases from CAF using the Linux kernel, in functions msm_isp_check_stream_cfg_cmd & msm_isp_stats_update_cgc_override, 'stream_cfg_cmd->num_streams' is not checked, and could overflow the array stream_cfg_cmd->stream_handle.

7.8CVSS8AI score0.00057EPSS
CVE
CVE
added 2017/08/18 6:29 p.m.46 views

CVE-2017-8262

In all Qualcomm products with Android releases from CAF using the Linux kernel, in some memory allocation and free functions, a race condition can potentially occur leading to a Use After Free condition.

7.6CVSS6.7AI score0.00068EPSS
CVE
CVE
added 2024/12/04 6:15 p.m.46 views

CVE-2018-9394

In mtk_p2p_wext_set_key of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_p2p.c, there is a possible OOB write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

7.8CVSS6.8AI score0.00018EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.46 views

CVE-2023-21309

In libcore, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.2AI score0.00022EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.46 views

CVE-2023-21347

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5CVSS7.4AI score0.00664EPSS
CVE
CVE
added 2023/10/30 5:15 p.m.46 views

CVE-2023-21369

In Usage Access, there is a possible way to display a Settings usage access restriction toggle screen due to a permissions bypass. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.

5.5CVSS5.6AI score0.00005EPSS
CVE
CVE
added 2016/07/11 1:59 a.m.45 views

CVE-2014-9795

app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices does not properly check for an integer overflow, which allows attackers to bypass intended access restrictions via crafted start and size values, aka Android internal bug 28820720 and Qualcomm internal bug ...

10CVSS7.5AI score0.00071EPSS
CVE
CVE
added 2015/10/01 12:59 a.m.45 views

CVE-2015-3824

The MPEG4Extractor::parseChunk function in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I does not properly restrict size addition, which allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow and memory corruption) via a crafted MPEG-4...

10CVSS8AI score0.2034EPSS
CVE
CVE
added 2015/10/06 5:59 p.m.45 views

CVE-2015-6596

mediaserver in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bugs 20731946 and 20719651, a different vulnerability than CVE-2015-7717.

9.3CVSS6.7AI score0.00207EPSS
CVE
CVE
added 2016/08/06 10:59 a.m.45 views

CVE-2015-8942

drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 6 devices does not validate the stream state, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28814652 and Qualcomm internal bug CR...

9.3CVSS7.5AI score0.00059EPSS
CVE
CVE
added 2017/05/16 2:29 p.m.45 views

CVE-2015-8999

In TrustZone a buffer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel while loading an ELF file.

9.3CVSS7.5AI score0.00063EPSS
CVE
CVE
added 2017/08/18 6:29 p.m.45 views

CVE-2016-10346

In all Qualcomm products with Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in the hypervisor.

10CVSS7.9AI score0.00152EPSS
Total number of security vulnerabilities930