CVE-2019-11516
- EPSS 0.86%
- Veröffentlicht 05.02.2020 17:15:10
- Zuletzt bearbeitet 21.11.2024 04:21:15
An issue was discovered in the Bluetooth component of the Cypress (formerly owned by Broadcom) Wireless IoT codebase. Extended Inquiry Responses (EIRs) are improperly handled, which causes a heap-based buffer overflow during device inquiry. This over...
CVE-2019-19273
- EPSS 0.22%
- Veröffentlicht 04.02.2020 16:15:12
- Zuletzt bearbeitet 21.11.2024 04:34:28
On Samsung mobile devices with O(8.0) and P(9.0) software and an Exynos 8895 chipset, RKP (aka the Samsung Hypervisor EL2 implementation) allows arbitrary memory write operations. The Samsung ID is SVE-2019-16265.
CVE-2015-1525
- EPSS 0.27%
- Veröffentlicht 24.01.2020 18:15:12
- Zuletzt bearbeitet 21.11.2024 02:25:35
audio/AudioPolicyManagerBase.cpp in Android before 5.1 allows attackers to cause a denial of service (audio_policy application outage) via a crafted application that provides a NULL device address.
CVE-2015-1530
- EPSS 0.39%
- Veröffentlicht 24.01.2020 18:15:12
- Zuletzt bearbeitet 21.11.2024 02:25:36
media/libmedia/IAudioPolicyService.cpp in Android before 5.1 allows attackers to execute arbitrary code with media_server privileges or cause a denial of service (integer overflow) via a crafted application that provides an invalid array size.
CVE-2013-6792
- EPSS 2.99%
- Veröffentlicht 23.01.2020 15:15:13
- Zuletzt bearbeitet 21.11.2024 01:59:42
Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability
CVE-2020-0003
- EPSS 0.14%
- Veröffentlicht 08.01.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:43
In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is nee...
CVE-2020-0004
- EPSS 0.15%
- Veröffentlicht 08.01.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:43
In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo...
CVE-2020-0006
- EPSS 0.77%
- Veröffentlicht 08.01.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:44
In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC server with no additional execution privileges needed...
CVE-2020-0007
- EPSS 0.17%
- Veröffentlicht 08.01.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:44
In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for e...
CVE-2020-0008
- EPSS 0.12%
- Veröffentlicht 08.01.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:44
In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not ne...