VYPR

Android

by Google

CVEs (4,041)

  • CVE-2017-0431HigApr 5, 2018
    risk 0.51cvss 7.8epss 0.00

    An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-32573899.

  • CVE-2016-8482HigApr 5, 2018
    risk 0.51cvss 7.8epss 0.00

    An elevation of privilege vulnerability in the NVIDIA GPU driver. Product: Android. Versions: Android kernel. Android ID: A-31799863. References: N-CVE-2016-8482.

  • CVE-2016-10232HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in the Qualcomm video driver. Product: Android. Versions: Android kernel. Android ID: A-34386696. References: QC-CR#1024872.

  • CVE-2016-10231HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in the Qualcomm sound codec driver. Product: Android. Versions: Android kernel. Android ID: A-33966912. References: QC-CR#1096799.

  • CVE-2015-9015HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    An elevation of privilege vulnerability in Qualcomm closed source components. Product: Android. Versions: Android kernel. Android ID: A-36714120.

  • CVE-2017-13252HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In CryptoHal::decrypt of CryptoHal.cpp, there is an out of bounds write due to improper input validation that results in a read from uninitialized memory. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed…

  • CVE-2017-13251HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In impeg2d_dec_pic_data_thread of impeg2d_dec_hdr.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege when running multi threaded with no additional execution privileges needed. User interaction is needed for…

  • CVE-2017-13250HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In ih264d_fmt_conv_420sp_to_420p of ih264d_utils.c, there is an out of bound write due to a missing out of bounds check because of a multiplication error. This could lead to an remote code execution with no additional execution privileges needed. User interaction is needed for…

  • CVE-2017-13249HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In impeg2d_api_set_display_frame of impeg2d_api_main.c, there is an out of bound write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:…

  • CVE-2017-13248HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In impeg2_idct_recon_sse42() of impeg2_idct_recon_sse42_intr.c, there is an out of bound write due to a missing bounds check. This could lead to an remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product:…

  • CVE-2017-13293HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    In the nfc_hci_cmd_received() function of core.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2017-13289HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a write size mismatch. This could lead to a local escalation of privileges where the user can start an activity with system privileges, with no additional execution privileges needed.…

  • CVE-2017-13288HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    In writeToParcel and readFromParcel of PeriodicAdvertisingReport.java, there is a permission bypass due to a 64/32bit int mismatch. This could lead to a local escalation of privilege where the user can start an activity with system privileges, with no additional execution…

  • CVE-2017-13287HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    In createFromParcel of VerifyCredentialResponse.java, there is a possible invalid parcel read due to improper input validation. This could lead to local escalation of privilege if mPayload in writeToParcel were null, with no additional execution privileges needed. User…

  • CVE-2017-13286HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    In writeToParcel and readFromParcel of OutputConfiguration.java, there is a permission bypass due to mismatched serialization. This could lead to a local escalation of privilege where the user can start an activity with system privileges, with no additional execution privileges…

  • CVE-2017-13278HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.00

    In MediaPlayerService::Client::notify of MediaPlayerService.cpp, there is a possible use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0,…

  • CVE-2017-13277HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In ihevcd_fmt_conv of ihevcd_fmt_conv.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0,…

  • CVE-2017-13276HigApr 4, 2018
    risk 0.51cvss 7.8epss 0.01

    In CProgramConfig_ReadHeightExt of tpdec_asc.cpp, there is a possible stack buffer overflow due to a missing bounds check. This could lead to a remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android.…

  • CVE-2017-17771HigMar 30, 2018
    risk 0.51cvss 7.8epss 0.00

    In msm_isp_prepare_v4l2_buf in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-02-12, an array out of bounds can occur.

  • CVE-2017-15852HigMar 30, 2018
    risk 0.51cvss 7.8epss 0.00

    Information leak of the ISPIF base address in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the camera driver.

Page 22 of 203