CVE-2017-15835
- EPSS 0.22%
- Veröffentlicht 07.12.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:15:18
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, While processing the RIC Data Descriptor IE in an artificially crafted 802.11 frame with IE length more than 255, an infinite loop may potentia...
- EPSS 0.89%
- Veröffentlicht 07.12.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:44:14
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Possible buffer overflow in WLAN function due to lack of input validation in values received from firmware.
CVE-2018-9547
- EPSS 0.17%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:40
In unflatten of GraphicBuffer.cpp, there is a possible bad fd close due to improper input validation. This could lead to local escalation of privilege in the system server with no additional execution privileges needed. User interaction is not needed...
CVE-2018-9548
- EPSS 0.15%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:40
In multiple functions of ContentProvider.java, there is a possible permission bypass due to a missing URI validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for e...
CVE-2018-9549
- EPSS 1.09%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:40
In lppTransposer of lpp_tran.cpp there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Andro...
CVE-2018-9550
- EPSS 1.25%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:41
In CAacDecoder_Init of aacdecoder.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Produc...
CVE-2018-9551
- EPSS 1.09%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:41
In CAacDecoder_Init of aacdecoder.cpp, there is a possible out-of-bound write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for e...
CVE-2018-9552
- EPSS 0.53%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:41
In ihevcd_sao_shift_ctb of ihevcd_sao.c there is a possible out of bounds write due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Produc...
CVE-2018-9553
- EPSS 1.09%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:41
In MasteringMetadata::Parse of mkvparser.cc there is a possible double free due to an insecure default value. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Produc...
CVE-2018-9554
- EPSS 0.17%
- Veröffentlicht 06.12.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 04:15:41
In dumpExtractors of IMediaExtractor.cp, there is a possible disclosure of recently accessed media files due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ...