VYPR

Android

by Google

CVEs (4,041)

  • CVE-2015-9124CriApr 18, 2018
    risk 0.59cvss 9.1epss 0.01

    In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, MDM9640, MDM9645, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 800, SD 808, and SD 810, the device may crash while accessing an invalid pointer or…

  • CVE-2017-13205CriJan 12, 2018
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64550583.

  • CVE-2017-13204CriJan 12, 2018
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64380237.

  • CVE-2017-13203CriJan 12, 2018
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63122634.

  • CVE-2017-13188CriJan 12, 2018
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (aac). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65280786.

  • CVE-2017-13187CriJan 12, 2018
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65034175.

  • CVE-2017-13185CriJan 12, 2018
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65123471.

  • CVE-2017-13150CriDec 6, 2017
    risk 0.59cvss 9.1epss 0.00

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-38328132.

  • CVE-2017-13149CriDec 6, 2017
    risk 0.59cvss 9.1epss 0.00

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65719872.

  • CVE-2017-0879CriDec 6, 2017
    risk 0.59cvss 9.1epss 0.01

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65025028.

  • CVE-2017-0854CriNov 16, 2017
    risk 0.59cvss 9.1epss 0.00

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63873837.

  • CVE-2017-0853CriNov 16, 2017
    risk 0.59cvss 9.1epss 0.00

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63121644.

  • CVE-2016-10229CriApr 4, 2017
    risk 0.58cvss 9.8epss 0.13

    udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag.

  • CVE-2016-0846HigApr 18, 2016
    risk 0.58cvss 8.4epss 0.01

    libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which allows attackers to gain privileges via a crafted application, as demonstrated…

  • CVE-2026-0073HigMay 4, 2026
    risk 0.57cvss 8.8epss 0.01

    In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wireless ADB mutual authentication due to a logic error in the code. This could lead to remote (proximal/adjacent) code execution as the shell user with no additional execution privileges needed. User interaction…

  • CVE-2018-9504HigOct 2, 2018
    risk 0.57cvss 8.8epss 0.01

    In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution over bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product:…

  • CVE-2017-13256HigApr 4, 2018
    risk 0.57cvss 8.8epss 0.01

    In process_service_search_attr_req of sdp_server.cc, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android.…

  • CVE-2017-13255HigApr 4, 2018
    risk 0.57cvss 8.8epss 0.01

    In process_service_attr_req of sdp_server.c, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions:…

  • CVE-2017-13230HigFeb 12, 2018
    risk 0.57cvss 8.8epss 0.02

    In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2_pic_width_in_luma_samples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

  • CVE-2017-13228HigFeb 12, 2018
    risk 0.57cvss 8.8epss 0.01

    In function ih264d_ref_idx_reordering of libavc, there is an out-of-bounds write due to modCount being defined as an unsigned character. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

Page 16 of 203