Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
GoogleAndroid7.1.2

612 matches found

CVE
CVEadded 2024/12/02 10:15 p.m.44 views

CVE-2018-9426

In RsaKeyPairGenerator::getNumberOfIterations of RSAKeyPairGenerator.java, an incorrect implementation could cause weak RSA key pairs being generated. This could lead to crypto vulnerability with no additional execution privileges needed. User interaction is not needed for exploitation. Bulletin Fi...

7.5CVSS6.8AI score0.0008EPSS
CVE
CVEadded 2024/12/03 1:15 a.m.44 views

CVE-2018-9441

In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

5.5CVSS8.1AI score0.0001EPSS
CVE
CVEadded 2024/11/20 6:15 p.m.44 views

CVE-2018-9479

In process_service_attr_req and process_service_search_attr_req of sdp_server.cc, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8CVSS7.6AI score0.00413EPSS
CVE
CVEadded 2018/11/14 6:29 p.m.44 views

CVE-2018-9527

In vorbis_book_decodev_set of codebook.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 A...

9.3CVSS8.1AI score0.00212EPSS
CVE
CVEadded 2019/02/12 12:0 a.m.44 views

CVE-2018-9589

In ieee802_11_rx_wnmsleep_req of wnm_ap.c in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the wifi driver with no additional execution privi...

5.5CVSS5AI score0.00024EPSS
CVE
CVEadded 2019/02/28 5:29 p.m.44 views

CVE-2019-1992

In bta_hl_sdp_query_results of bta_hl_main.cc, there is a possible use-after-free due to a race condition. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Andr...

7.6CVSS7.8AI score0.00782EPSS
CVE
CVEadded 2019/04/19 8:29 p.m.44 views

CVE-2019-2027

In floor0_inverse1 of floor0.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Andro...

9.3CVSS8.8AI score0.00343EPSS
CVE
CVEadded 2019/07/08 6:15 p.m.44 views

CVE-2019-2116

In save_attr_seq of sdp_discovery.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Androi...

7.5CVSS6.9AI score0.00314EPSS
CVE
CVEadded 2019/08/20 8:15 p.m.44 views

CVE-2019-2128

In ACELP_4t64_fx of c4t64fx.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1...

7.8CVSS7.7AI score0.00013EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.43 views

CVE-2017-0666

A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37285689.

9.3CVSS7.4AI score0.00035EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.43 views

CVE-2017-0680

A remote code execution vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37008096.

9.3CVSS7.7AI score0.00212EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.43 views

CVE-2017-0686

A denial of service vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34231231.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.43 views

CVE-2017-0688

A denial of service vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35584425.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.43 views

CVE-2017-0690

A denial of service vulnerability in the Android media framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36592202.

5.5CVSS5.6AI score0.0005EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.43 views

CVE-2017-0709

A information disclosure vulnerability in the HTC sensor hub driver. Product: Android. Versions: Android kernel. Android ID: A-35468048.

4.3CVSS4.4AI score0.00054EPSS
CVE
CVEadded 2017/08/09 9:29 p.m.43 views

CVE-2017-0712

A elevation of privilege vulnerability in the Android framework (wi-fi service). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37207928.

7.8CVSS7.4AI score0.00053EPSS
CVE
CVEadded 2017/08/09 9:29 p.m.43 views

CVE-2017-0724

A denial of service vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36819262.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/08/09 9:29 p.m.43 views

CVE-2017-0725

A denial of service vulnerability in the Android media framework (libskia). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-37627194.

5.5CVSS5.6AI score0.00039EPSS
CVE
CVEadded 2017/08/09 9:29 p.m.43 views

CVE-2017-0731

A elevation of privilege vulnerability in the Android media framework (mpeg4 encoder). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363.

7.8CVSS7.4AI score0.00053EPSS
CVE
CVEadded 2017/08/09 9:29 p.m.43 views

CVE-2017-0739

A information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37712181.

5.5CVSS5.5AI score0.00096EPSS
CVE
CVEadded 2017/09/08 8:29 p.m.43 views

CVE-2017-0775

A denial of service vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62673179.

7.1CVSS5.9AI score0.00038EPSS
CVE
CVEadded 2017/09/08 8:29 p.m.43 views

CVE-2017-0784

A elevation of privilege vulnerability in the Android system (nfc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37287958.

8.8CVSS8.6AI score0.0006EPSS
CVE
CVEadded 2017/09/08 8:29 p.m.43 views

CVE-2017-0788

A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37722328. References: B-V2017053103.

8.8CVSS8.6AI score0.00062EPSS
CVE
CVEadded 2017/10/04 1:29 a.m.43 views

CVE-2017-0815

An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63526567.

5.5CVSS5AI score0.00154EPSS
CVE
CVEadded 2017/11/16 11:29 p.m.43 views

CVE-2017-0840

An information disclosure vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62948670.

7.5CVSS6.8AI score0.00145EPSS
CVE
CVEadded 2017/11/16 11:29 p.m.43 views

CVE-2017-0860

An elevation of privilege vulnerability in the Android system (inputdispatcher). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-31097064.

5.3CVSS5.8AI score0.00016EPSS
CVE
CVEadded 2018/01/12 11:29 p.m.43 views

CVE-2017-13190

A vulnerability in the Android media framework (libhevc) related to handling ps_codec_obj memory allocation failures. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68299873.

7.8CVSS7.1AI score0.00101EPSS
CVE
CVEadded 2018/04/04 5:29 p.m.43 views

CVE-2017-13249

In impeg2d_api_set_display_frame of impeg2d_api_main.c, there is an out of bound write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7....

9.3CVSS7.9AI score0.00212EPSS
CVE
CVEadded 2018/04/04 5:29 p.m.43 views

CVE-2017-13254

A other vulnerability in the Android media framework (AACExtractor). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-70239507.

7.8CVSS7.2AI score0.00125EPSS
CVE
CVEadded 2024/11/15 10:15 p.m.43 views

CVE-2017-13311

In the read() function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can start an activity with system privileges with no additional execution privileges needed. User interactio...

7.8CVSS6.8AI score0.00007EPSS
CVE
CVEadded 2020/04/07 4:15 p.m.43 views

CVE-2017-18652

An issue was discovered on Samsung mobile devices with M(6.0) and N(7.x) software. SVoice allows arbitrary code execution by changing dynamic libraries. The Samsung ID is SVE-2017-9299 (September 2017).

9.8CVSS9.7AI score0.00315EPSS
CVE
CVEadded 2020/04/08 6:15 p.m.43 views

CVE-2018-21052

An issue was discovered on Samsung mobile devices with N(7.x) and O(8.X) (Exynos chipsets) software. There is incorrect usage of shared memory in the vaultkeeper Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2018-12855 (October 2018).

10CVSS9.6AI score0.00195EPSS
CVE
CVEadded 2024/11/19 7:15 p.m.43 views

CVE-2018-9345

In BnAudioPolicyService::onTransact of AudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

5.5CVSS5.9AI score0.00024EPSS
CVE
CVEadded 2018/11/06 5:29 p.m.43 views

CVE-2018-9361

In process_l2cap_cmd of l2c_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android...

7.8CVSS6.9AI score0.016EPSS
CVE
CVEadded 2024/11/20 6:15 p.m.43 views

CVE-2018-9471

In the deserialization constructor of NanoAppFilter.java, there is a possible loss of data due to type confusion. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed for exploitation.

9.8CVSS6.8AI score0.0005EPSS
CVE
CVEadded 2018/12/06 2:29 p.m.43 views

CVE-2018-9555

In l2c_lcc_proc_pdu of l2c_fcr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: And...

8.8CVSS8.4AI score0.0036EPSS
CVE
CVEadded 2019/04/19 8:29 p.m.43 views

CVE-2019-2035

In rw_i93_sm_update_ndef of rw_i93.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-...

7.8CVSS7.7AI score0.00056EPSS
CVE
CVEadded 2019/08/20 8:15 p.m.43 views

CVE-2019-2133

In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0...

9.3CVSS7.8AI score0.00066EPSS
CVE
CVEadded 2017/05/12 3:29 p.m.42 views

CVE-2017-0589

A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the Mediase...

9.3CVSS7.6AI score0.00272EPSS
CVE
CVEadded 2017/05/12 3:29 p.m.42 views

CVE-2017-0592

A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution withi...

9.3CVSS7.6AI score0.00272EPSS
CVE
CVEadded 2017/05/12 3:29 p.m.42 views

CVE-2017-0596

An elevation of privilege vulnerability in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not...

9.3CVSS7.2AI score0.00067EPSS
CVE
CVEadded 2017/08/18 5:29 p.m.42 views

CVE-2017-0687

A denial of service vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35583675.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.42 views

CVE-2017-0694

A denial of service vulnerability in the Android media framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37093318.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.42 views

CVE-2017-0697

A denial of service vulnerability in the Android media framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37239013.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.42 views

CVE-2017-0698

A information disclosure vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35467458.

5.5CVSS5.5AI score0.00063EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.42 views

CVE-2017-0700

A remote code execution vulnerability in the Android system ui. Product: Android. Versions: 7.1.1, 7.1.2. Android ID: A-35639138.

9.3CVSS7.7AI score0.00269EPSS
CVE
CVEadded 2017/07/06 8:29 p.m.42 views

CVE-2017-0701

A remote code execution vulnerability in the Android system ui. Product: Android. Versions: 7.1.1, 7.1.2. Android ID: A-36385715.

9.3CVSS7.7AI score0.00212EPSS
CVE
CVEadded 2017/08/09 9:29 p.m.42 views

CVE-2017-0730

A denial of service vulnerability in the Android media framework (h264 decoder). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36279112.

5.5CVSS5.6AI score0.00044EPSS
CVE
CVEadded 2017/09/08 8:29 p.m.42 views

CVE-2017-0767

A elevation of privilege vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37536407.

9.3CVSS7.9AI score0.00035EPSS
CVE
CVEadded 2017/09/08 8:29 p.m.42 views

CVE-2017-0771

A denial of service vulnerability in the Android media framework (libskia). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-37624243.

7.1CVSS5.9AI score0.00038EPSS
Total number of security vulnerabilities612