CVE-2017-13176
- EPSS 1.2%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:05
In the parseURL function of URLStreamHandler, there is improper input validation of the host field. This could lead to a remote elevation of privilege that could enable bypassing user interaction requirements with no additional execution privileges n...
- EPSS 2.42%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In several functions of libhevc, NEON registers are not preserved. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Ver...
- EPSS 2.35%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the initDecoder function of SoftAVCDec, there is a possible out-of-bounds write to mCodecCtx due to a use after free when buffer allocation fails. This could lead to remote code execution as a privileged process with no additional execution privil...
- EPSS 2.35%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the ihevcd_allocate_static_bufs and ihevcd_create functions of SoftHEVC, there is a possible out-of-bounds write due to a use after free. Both ps_codec_obj and ps_create_op->s_ivd_create_op_t.pv_handle point to the same memory and ps_codec_obj cou...
CVE-2017-13180
- EPSS 0.2%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use after free if a bad header causes the decoder to get caught in a loop while another thread frees the memory it's accessing. This could lead to a local e...
CVE-2017-13181
- EPSS 0.2%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the doGetThumb and getThumbnail functions of MtpServer, there is a possible double free due to not NULLing out a freed pointer. This could lead to an local elevation of privilege enabling code execution as a privileged process with no additional e...
CVE-2017-13182
- EPSS 0.2%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the sendFormatChange function of ACodec, there is a possible integer overflow which could lead to an out-of-bounds write. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional executio...
- EPSS 0.15%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. This could lead to a local elevation of privilege enabl...
CVE-2017-13184
- EPSS 0.22%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyncInjector. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges n...
CVE-2017-13185
- EPSS 0.51%
- Veröffentlicht 12.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 03:11:06
An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65123471.