- EPSS 2.21%
- Veröffentlicht 04.04.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:18
In avrc_ctrl_pars_vendor_rsp of bluetooth avrcp_ctrl, there is a possible out of bounds write on the stack due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not...
- EPSS 1.65%
- Veröffentlicht 04.04.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:18
In config_set_string of config.cc, it is possible to pair a second BT keyboard without user approval due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction ...
- EPSS 1.62%
- Veröffentlicht 04.04.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:18
In SvoxSsmlParser and startElement of svox_ssml_parser.cpp, there is a possible out of bounds write due to an uninitialized buffer. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. Us...
CVE-2017-13286
- EPSS 0.33%
- Veröffentlicht 04.04.2018 16:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:18
In writeToParcel and readFromParcel of OutputConfiguration.java, there is a permission bypass due to mismatched serialization. This could lead to a local escalation of privilege where the user can start an activity with system privileges, with no add...
CVE-2018-3599
- EPSS 0.48%
- Veröffentlicht 03.04.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 04:05:44
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while notifying a DCI client, a Use After Free condition can occur.
CVE-2018-5820
- EPSS 0.42%
- Veröffentlicht 03.04.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:28
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in the function wma_tbttoffset_update_event_handler(), a parameter received from firmwa...
CVE-2018-5821
- EPSS 0.34%
- Veröffentlicht 03.04.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:28
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function wma_wow_wakeup_host_event(), wake_info->vdev_id is received from FW and is ...
CVE-2018-5822
- EPSS 0.42%
- Veröffentlicht 03.04.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:28
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, compromised WLAN FW can potentially cause a buffer overwrite.
CVE-2018-5823
- EPSS 0.16%
- Veröffentlicht 03.04.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:28
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, improper buffer length validation in extscan hotlist event can lead to potential buffer...
CVE-2018-5824
- EPSS 0.16%
- Veröffentlicht 03.04.2018 17:29:01
- Zuletzt bearbeitet 21.11.2024 04:09:29
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while processing HTT_T2H_MSG_TYPE_RX_FLUSH or HTT_T2H_MSG_TYPE_RX_PN_IND messages, a bu...