CVE-2018-11964
- EPSS 0.14%
- Veröffentlicht 20.12.2018 15:29:02
- Zuletzt bearbeitet 21.11.2024 03:44:20
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Exposing the hashed content in /etc/passwd may lead to security issue.
CVE-2018-11965
- EPSS 0.14%
- Veröffentlicht 20.12.2018 15:29:02
- Zuletzt bearbeitet 21.11.2024 03:44:20
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Anyone can execute proptrigger.sh which will lead to change in properties.
CVE-2018-11983
- EPSS 0.14%
- Veröffentlicht 20.12.2018 15:29:02
- Zuletzt bearbeitet 21.11.2024 03:44:22
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Error in kernel observed while accessing freed mask pointers after reallocating memory for mask table.
CVE-2018-11984
- EPSS 0.14%
- Veröffentlicht 20.12.2018 15:29:02
- Zuletzt bearbeitet 21.11.2024 03:44:22
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, A use after free condition and an out-of-bounds access can occur in the DIAG driver.
CVE-2018-11985
- EPSS 0.16%
- Veröffentlicht 20.12.2018 15:29:02
- Zuletzt bearbeitet 21.11.2024 03:44:22
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, When allocating heap using user supplied size, Possible heap overflow vulnerability due to integer overflow in roundup to native pointer.
CVE-2017-9704
- EPSS 0.15%
- Veröffentlicht 20.12.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:36:40
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, There is no synchronization between msm_vb2 buffer operations which can lead to use after free.
CVE-2018-9517
- EPSS 0.42%
- Veröffentlicht 07.12.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:37
In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: A...
CVE-2018-9518
- EPSS 0.26%
- Veröffentlicht 07.12.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:37
In nfc_llcp_build_sdreq_tlv of llcp_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploi...
CVE-2018-9519
- EPSS 0.11%
- Veröffentlicht 07.12.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:37
In easelcomm_hw_build_scatterlist, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System privileges required. User interaction is not needed for exploitation. Product: Android. V...
CVE-2018-9569
- EPSS 1.13%
- Veröffentlicht 07.12.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:43
In impd_init_drc_decode_post_config of impd_drc_gain_decoder.c there is a possible out-of-bound write due to incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed f...