VYPR

Vendor CVEs

Google

All CVEs

11,416 total · sorted by risk
  • CVE-2014-9967HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.

  • CVE-2014-9965HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of an SCM call.

  • CVE-2014-9964HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in debug functionality.

  • CVE-2014-9963HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WideVine DRM.

  • CVE-2014-9962HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of a DRM provisioning command.

  • CVE-2014-9961HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection.

  • CVE-2014-9960HigJun 13, 2017
    risk 0.51cvss 7.8epss 0.01

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.

  • CVE-2015-9007HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In TrustZone in all Android releases from CAF using the Linux kernel, a Double Free vulnerability could potentially exist.

  • CVE-2015-9006HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In Resource Power Manager (RPM) in all Android releases from CAF using the Linux kernel, an Improper Access Control vulnerability could potentially exist.

  • CVE-2015-9005HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist.

  • CVE-2014-9952HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In the Secure File System in all Android releases from CAF using the Linux kernel, a capture-replay vulnerability could potentially exist.

  • CVE-2014-9950HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In Core Kernel in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist.

  • CVE-2014-9949HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer Dereference vulnerability could potentially exist.

  • CVE-2014-9948HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Validation of Array Index vulnerability could potentially exist.

  • CVE-2014-9946HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In Core Kernel in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.

  • CVE-2014-9945HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist.

  • CVE-2014-9944HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.01

    In the Secure File System in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist.

  • CVE-2014-9943HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In Core Kernel in all Android releases from CAF using the Linux kernel, a Null Pointer Dereference vulnerability could potentially exist.

  • CVE-2014-9942HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In Boot in all Android releases from CAF using the Linux kernel, a Use of Uninitialized Variable vulnerability could potentially exist.

  • CVE-2014-9930HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In WCDMA in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.

  • CVE-2014-9929HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist.

  • CVE-2014-9928HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In GERAN in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist.

  • CVE-2014-9927HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In UIM in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist.

  • CVE-2014-9926HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In GNSS in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.

  • CVE-2014-9925HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In HDR in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist.

  • CVE-2014-9924HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In 1x in all Android releases from CAF using the Linux kernel, a Signed to Unsigned Conversion Error could potentially occur.

  • CVE-2014-9923HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.00

    In NAS in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist.

  • CVE-2016-10239HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability…

  • CVE-2016-10238HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In QSEE in all Android releases from CAF using the Linux kernel access control may potentially be bypassed due to a page alignment issue.

  • CVE-2016-10237HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    If shared content protection memory were passed as the secure camera memory buffer by the HLOS to a trusted application (TA) in all Android releases from CAF using the Linux kernel, the TA would not detect an issue and it would be treated as secure memory.

  • CVE-2015-9003HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone a cryptographic issue can potentially occur in all Android releases from CAF using the Linux kernel.

  • CVE-2015-9002HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an out-of-range pointer offset vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

  • CVE-2015-9000HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

  • CVE-2015-8999HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone a buffer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel while loading an ELF file.

  • CVE-2015-8998HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel.

  • CVE-2015-8995HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel.

  • CVE-2014-9937HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone a buffer overflow vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

  • CVE-2014-9935HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an integer overflow vulnerability leading to a buffer overflow could potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

  • CVE-2014-9934HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.00

    A PKCS#1 v1.5 signature verification routine in all Android releases from CAF using the Linux kernel may not check padding.

  • CVE-2014-9933HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    Due to missing input validation in all Android releases from CAF using the Linux kernel, HLOS can write to fuses for which it should not have access.

  • CVE-2014-9932HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone, an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel due to an improper address range computation.

  • CVE-2014-9931HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    A buffer overflow vulnerability in all Android releases from CAF using the Linux kernel can potentially occur if an OEM performs an app region size customization due to a hard-coded value.

  • CVE-2017-8246HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.00

    In function msm_pcm_playback_close() in all Android releases from CAF using the Linux kernel, prtd is assigned substream->runtime->private_data. Later, prtd is freed. However, prtd is not sanitized and set to NULL, resulting in a dangling pointer. There are other functions that…

  • CVE-2017-8245HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.00

    In all Android releases from CAF using the Linux kernel, while processing a voice SVC request which is nonstandard by specifying a payload size that will overflow its own declared size, an out of bounds memory copy occurs.

  • CVE-2017-0604HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in the kernel Qualcomm power driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which…

  • CVE-2017-0597HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are…

  • CVE-2017-0596HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated…

  • CVE-2017-0595HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated…

  • CVE-2017-0594HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in codecs/aacenc/SoftAACEncoder2.cpp in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to…

  • CVE-2017-0593HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.00

    An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to obtain access to custom permissions. This issue is rated as High because it is a general bypass for operating system protections that isolate application data from other…

Page 87 of 229