CVE-2018-9522
- EPSS 0.18%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:37
In the serialization functions of StatsLogEventWrapper.java, there is a possible out-of-bounds write due to unnecessary functionality which may be abused. This could lead to local escalation of privilege in the system process with no additional execu...
CVE-2018-9523
- EPSS 0.18%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In Parcel.writeMapInternal of Parcel.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User inter...
CVE-2018-9524
- EPSS 0.18%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In functionality implemented in System UI, there are insufficient protections implemented around overlay windows. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploita...
CVE-2018-9525
- EPSS 0.18%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In the AndroidManifest.xml file defining the SliceBroadcastReceiver handler for com.android.settings.slice.action.WIFI_CHANGED, there is a possible permissions bypass due to a confused deputy. This could lead to local escalation of privilege, allowin...
CVE-2018-9526
- EPSS 0.91%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In device configuration data, there is an improperly configured setting. This could lead to remote disclosure of device location. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112159033
CVE-2018-9527
- EPSS 1.2%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In vorbis_book_decodev_set of codebook.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Produc...
CVE-2018-9528
- EPSS 0.73%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In ixheaacd_over_lap_add1_armv8 of ixheaacd_overlap_add1.s there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for ...
CVE-2018-9529
- EPSS 0.73%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In ixheaacd_individual_ch_stream of ixheaacd_channel.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for expl...
CVE-2018-9530
- EPSS 0.73%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In ixheaacd_tns_ar_filter_dec of ixheaacd_aac_tns.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploit...
CVE-2018-9531
- EPSS 1.13%
- Veröffentlicht 14.11.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:38
In AudioSpecificConfig_Parse of tpdec_asc.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation...