Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.21%
  • Veröffentlicht 04.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:11:18

In avrc_ctrl_pars_vendor_rsp of bluetooth avrcp_ctrl, there is a possible out of bounds write on the stack due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not...

  • EPSS 1.65%
  • Veröffentlicht 04.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:11:18

In config_set_string of config.cc, it is possible to pair a second BT keyboard without user approval due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction ...

  • EPSS 1.62%
  • Veröffentlicht 04.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:11:18

In SvoxSsmlParser and startElement of svox_ssml_parser.cpp, there is a possible out of bounds write due to an uninitialized buffer. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. Us...

  • EPSS 0.33%
  • Veröffentlicht 04.04.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:11:18

In writeToParcel and readFromParcel of OutputConfiguration.java, there is a permission bypass due to mismatched serialization. This could lead to a local escalation of privilege where the user can start an activity with system privileges, with no add...

  • EPSS 0.48%
  • Veröffentlicht 03.04.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:05:44

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while notifying a DCI client, a Use After Free condition can occur.

  • EPSS 0.42%
  • Veröffentlicht 03.04.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:09:28

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in the function wma_tbttoffset_update_event_handler(), a parameter received from firmwa...

  • EPSS 0.34%
  • Veröffentlicht 03.04.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:09:28

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in function wma_wow_wakeup_host_event(), wake_info->vdev_id is received from FW and is ...

  • EPSS 0.42%
  • Veröffentlicht 03.04.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:09:28

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, compromised WLAN FW can potentially cause a buffer overwrite.

  • EPSS 0.16%
  • Veröffentlicht 03.04.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:09:28

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, improper buffer length validation in extscan hotlist event can lead to potential buffer...

  • EPSS 0.16%
  • Veröffentlicht 03.04.2018 17:29:01
  • Zuletzt bearbeitet 21.11.2024 04:09:29

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while processing HTT_T2H_MSG_TYPE_RX_FLUSH or HTT_T2H_MSG_TYPE_RX_PN_IND messages, a bu...