Google

Android

7931 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2018-9411

  • EPSS 7.31%
  • Veröffentlicht 19.11.2024 22:15:18
  • Zuletzt bearbeitet 22.11.2024 22:30:25

In decrypt of ClearKeyCasPlugin.cpp there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for exploitation.

5.5

CVE-2018-9412

  • EPSS 0.05%
  • Veröffentlicht 19.11.2024 22:15:18
  • Zuletzt bearbeitet 19.03.2025 18:15:16

In removeUnsynchronization of ID3.cpp there is a possible resource exhaustion due to improper input validation. This could lead to denial of service with no additional execution privileges needed. User interaction is needed for exploitation.

7.8

CVE-2018-9417

  • EPSS 0.06%
  • Veröffentlicht 19.11.2024 22:15:18
  • Zuletzt bearbeitet 22.11.2024 22:08:46

In f_hidg_read and hidg_disable of f_hid.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

7.5

CVE-2018-9419

  • EPSS 1.35%
  • Veröffentlicht 19.11.2024 22:15:18
  • Zuletzt bearbeitet 22.11.2024 22:07:33

In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploit...

8.8

CVE-2018-9365

  • EPSS 2.74%
  • Veröffentlicht 19.11.2024 21:15:05
  • Zuletzt bearbeitet 18.12.2024 14:20:32

In smp_data_received of smp_l2c.cc, there is a possible out of bounds read followed by code execution due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed f...

5.5

CVE-2018-9410

  • EPSS 0.07%
  • Veröffentlicht 19.11.2024 21:15:05
  • Zuletzt bearbeitet 22.11.2024 22:28:51

In analyzeAxes of FontUtils.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

6.5

CVE-2018-9348

  • EPSS 2.71%
  • Veröffentlicht 19.11.2024 20:15:27
  • Zuletzt bearbeitet 22.11.2024 21:14:05

In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to remote denial of service due to resource exhaustion with no additional execution privileges needed. User interaction is needed for exploitation.

7.5

CVE-2018-9364

  • EPSS 0.03%
  • Veröffentlicht 19.11.2024 20:15:27
  • Zuletzt bearbeitet 22.11.2024 21:22:14

In the LG LAF component, there is a special command that allowed modification of certain partitions. This could lead to bypass of secure boot. User interaction is not needed for exploitation.

7.8

CVE-2018-9366

  • EPSS 0.06%
  • Veröffentlicht 19.11.2024 20:15:27
  • Zuletzt bearbeitet 22.11.2024 21:23:11

In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User i...

7.8

CVE-2018-9367

  • EPSS 0.04%
  • Veröffentlicht 19.11.2024 20:15:27
  • Zuletzt bearbeitet 22.11.2024 21:23:04

In FT_ACDK_CCT_V2_OP_ISP_SET_TUNING_PARAS of Meta_CCAP_Para.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...