Kernel

CVEs (39)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-13271	Google Kernel	Hig	0.47	7.3	0.00	Apr 4, 2018	A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69006799.
CVE-2017-13270	Google Kernel	Hig	0.47	7.3	0.00	Apr 4, 2018	A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69474744.
CVE-2017-13307	Google Kernel	Hig	0.47	7.3	0.00	Apr 4, 2018	A elevation of privilege vulnerability in the Upstream kernel pci sysfs. Product: Android. Versions: Android kernel. Android ID: A-69128924.
CVE-2017-13306	Google Kernel	Hig	0.47	7.3	0.00	Apr 4, 2018	A elevation of privilege vulnerability in the Upstream kernel mnh driver. Product: Android. Versions: Android kernel. Android ID: A-70295063.
CVE-2017-13305	Google Android	Hig	0.46	7.1	0.00	Apr 4, 2018	A information disclosure vulnerability in the Upstream kernel encrypted-keys. Product: Android. Versions: Android kernel. Android ID: A-70526974.
CVE-2017-0577	Htc touchscreen driver	Hig	0.46	7.0	0.01	Apr 7, 2017	An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android.…
CVE-2017-0403	Linux Kernel	Hig	0.46	7.0	0.02	Jan 12, 2017	An elevation of privilege vulnerability in the kernel performance subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product:…
CVE-2016-8399	Linux Kernel	Hig	0.46	7.0	0.02	Jan 12, 2017	An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and…
CVE-2015-9016	Google Kernel	Hig	0.39	7.0	0.00	Apr 5, 2018	In blk_mq_tag_to_rq in blk-mq.c in the upstream kernel, there is a possible use after free due to a race condition when a request has been previously freed by blk_mq_complete_request. This could lead to local escalation of privilege. Product: Android. Versions: Android kernel.…
CVE-2016-6753	Google Android	Med	0.36	5.5	0.00	Nov 25, 2016	An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as…
CVE-2016-6685	Google Android	Med	0.36	5.5	0.00	Oct 10, 2016	The kernel in Android before 2016-10-05 on Nexus 6P devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30402628.
CVE-2016-6683	Google Android	Med	0.36	5.5	0.00	Oct 10, 2016	The kernel in Android before 2016-10-05 on Nexus devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30143283.
CVE-2017-0744	Nvidia firmware	Med	0.34	5.3	0.00	Apr 5, 2018	An elevation of privilege vulnerability in the NVIDIA firmware processing code. Product: Android. Versions: Android kernel. Android ID: A-34112726. References: N-CVE-2017-0744.
CVE-2017-13304	Google Kernel	Med	0.34	5.3	0.00	Apr 4, 2018	A information disclosure vulnerability in the Upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-70576999.
CVE-2017-13165	Google Android	Med	0.34	5.3	0.00	Dec 6, 2017	An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Android kernel. Android ID A-31269937.
CVE-2017-0630	Linux Kernel	Med	0.31	4.7	0.01	May 12, 2017	An information disclosure vulnerability in the kernel trace subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android.…
CVE-2017-0537	Linux Kernel	Med	0.31	4.7	0.01	Mar 8, 2017	An information disclosure vulnerability in the kernel USB gadget driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android.…
CVE-2017-13220	Google Kernel	Hig	0.00	7.8	0.00	Jan 12, 2018	An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions: Android kernel. Android ID: A-63527053.
CVE-2015-6619	Google Android		0.00	—	0.01	Dec 8, 2015	The kernel in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, aka internal bug 23520714.

CVE-2017-13271HigApr 4, 2018
Google
Kernel
risk 0.47cvss 7.3epss 0.00
A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69006799.
CVE-2017-13270HigApr 4, 2018
Google
Kernel
risk 0.47cvss 7.3epss 0.00
A elevation of privilege vulnerability in the upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-69474744.
CVE-2017-13307HigApr 4, 2018
Google
Kernel
risk 0.47cvss 7.3epss 0.00
A elevation of privilege vulnerability in the Upstream kernel pci sysfs. Product: Android. Versions: Android kernel. Android ID: A-69128924.
CVE-2017-13306HigApr 4, 2018
Google
Kernel
risk 0.47cvss 7.3epss 0.00
A elevation of privilege vulnerability in the Upstream kernel mnh driver. Product: Android. Versions: Android kernel. Android ID: A-70295063.
CVE-2017-13305HigApr 4, 2018
Google
Android
risk 0.46cvss 7.1epss 0.00
A information disclosure vulnerability in the Upstream kernel encrypted-keys. Product: Android. Versions: Android kernel. Android ID: A-70526974.
CVE-2017-0577HigApr 7, 2017
Htc
touchscreen driver
risk 0.46cvss 7.0epss 0.01
An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android.…
CVE-2017-0403HigJan 12, 2017
Linux
Kernel
risk 0.46cvss 7.0epss 0.02
An elevation of privilege vulnerability in the kernel performance subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product:…
CVE-2016-8399HigJan 12, 2017
Linux
Kernel
risk 0.46cvss 7.0epss 0.02
An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and…
CVE-2015-9016HigApr 5, 2018
Google
Kernel
risk 0.39cvss 7.0epss 0.00
In blk_mq_tag_to_rq in blk-mq.c in the upstream kernel, there is a possible use after free due to a race condition when a request has been previously freed by blk_mq_complete_request. This could lead to local escalation of privilege. Product: Android. Versions: Android kernel.…
CVE-2016-6753MedNov 25, 2016
Google
Android
risk 0.36cvss 5.5epss 0.00
An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as…
CVE-2016-6685MedOct 10, 2016
Google
Android
risk 0.36cvss 5.5epss 0.00
The kernel in Android before 2016-10-05 on Nexus 6P devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30402628.
CVE-2016-6683MedOct 10, 2016
Google
Android
risk 0.36cvss 5.5epss 0.00
The kernel in Android before 2016-10-05 on Nexus devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30143283.
CVE-2017-0744MedApr 5, 2018
Nvidia
firmware
risk 0.34cvss 5.3epss 0.00
An elevation of privilege vulnerability in the NVIDIA firmware processing code. Product: Android. Versions: Android kernel. Android ID: A-34112726. References: N-CVE-2017-0744.
CVE-2017-13304MedApr 4, 2018
Google
Kernel
risk 0.34cvss 5.3epss 0.00
A information disclosure vulnerability in the Upstream kernel mnh_sm driver. Product: Android. Versions: Android kernel. Android ID: A-70576999.
CVE-2017-13165MedDec 6, 2017
Google
Android
risk 0.34cvss 5.3epss 0.00
An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Android kernel. Android ID A-31269937.
CVE-2017-0630MedMay 12, 2017
Linux
Kernel
risk 0.31cvss 4.7epss 0.01
An information disclosure vulnerability in the kernel trace subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android.…
CVE-2017-0537MedMar 8, 2017
Linux
Kernel
risk 0.31cvss 4.7epss 0.01
An information disclosure vulnerability in the kernel USB gadget driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android.…
CVE-2017-13220HigJan 12, 2018
Google
Kernel
risk 0.00cvss 7.8epss 0.00
An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions: Android kernel. Android ID: A-63527053.
CVE-2015-6619Dec 8, 2015
Google
Android
risk 0.00cvss —epss 0.01
The kernel in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, aka internal bug 23520714.

Page 2 of 2