CVE-2018-9363
- EPSS 0.46%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:24
In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kerne...
CVE-2018-9385
- EPSS 0.26%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:25
In driver_override_store of bus.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Pr...
CVE-2018-9415
- EPSS 0.25%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:26
In driver_override_store and driver_override_show of bus.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploita...
CVE-2018-9422
- EPSS 0.22%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:26
In get_futex_key of futex.c, there is a use-after-free due to improper locking. This could lead to local escalation of privilege with no additional privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android...
CVE-2018-9427
- EPSS 1.85%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:27
In CopyToOMX of OMXNodeInstance.cpp there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for exploitati...
CVE-2018-9436
- EPSS 1.7%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:27
In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. ...
CVE-2018-9437
- EPSS 0.88%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:27
In getstring of ID3.cpp there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Ve...
- EPSS 0.19%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:27
When a device connects only over WiFi VPN, the device may not receive security updates due to some incorrect checks. This could lead to a local denial of service of security updates with no additional execution privileges needed. User interaction is ...
CVE-2018-9444
- EPSS 0.53%
- Veröffentlicht 06.11.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:29
In ih264d_video_decode of ih264d_api.c there is a possible resource exhaustion due to an infinite loop. This could lead to remote temporary device denial of service (remote hang or reboot) with no additional execution privileges needed. User interact...
CVE-2017-18281
- EPSS 0.17%
- Veröffentlicht 29.10.2018 18:29:00
- Zuletzt bearbeitet 21.11.2024 03:19:45
A bool variable in Video function, which gets typecasted to int before being read could result in an out of bound read access in all Android releases from CAF using the linux kernel