CVE-2015-8939
- EPSS 0.53%
- Veröffentlicht 06.08.2016 10:59:48
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/video/msm/mdp4_util.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not validate r stages, g stages, or b stages data, which allows attackers to gain privileges via a crafted application, aka Android i...
CVE-2015-8938
- EPSS 0.54%
- Veröffentlicht 06.08.2016 10:59:47
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MSM camera driver in the Qualcomm components in Android before 2016-08-05 on Nexus 6 devices does not validate input parameters, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28804030 and Qualcomm i...
CVE-2015-8937
- EPSS 0.47%
- Veröffentlicht 06.08.2016 10:59:46
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/char/diag/diagchar_core.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5, 6, and 7 (2013) devices mishandles a socket process, which allows attackers to gain privileges via a crafted application, aka Android internal bug 2...
CVE-2014-9900
- EPSS 0.52%
- Veröffentlicht 06.08.2016 10:59:44
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not initialize a certain data structure, which allows local users to obtain sensitive infor...
CVE-2014-9899
- EPSS 0.46%
- Veröffentlicht 06.08.2016 10:59:43
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/usb/host/ehci-msm2.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices omits certain minimum calculations before copying data, which allows attackers to obtain sensitive information via a crafted application, aka Andr...
CVE-2014-9898
- EPSS 0.46%
- Veröffentlicht 06.08.2016 10:59:42
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate input parameters, which allows attackers to obtain sensitive information via a crafted appli...
CVE-2014-9897
- EPSS 0.46%
- Veröffentlicht 06.08.2016 10:59:41
- Zuletzt bearbeitet 06.05.2026 22:30:45
sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate certain user-space data, which allows attackers to obtain sensitive information via a crafted application, aka Android...
CVE-2014-9896
- EPSS 0.46%
- Veröffentlicht 06.08.2016 10:59:40
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/char/adsprpc.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate parameters and return values, which allows attackers to obtain sensitive information via a crafted application, ...
CVE-2014-9895
- EPSS 0.72%
- Veröffentlicht 06.08.2016 10:59:39
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/media/media-device.c in the Linux kernel before 3.11, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize certain data structures, which allows local users to obtain sensitive information via a c...
CVE-2014-9894
- EPSS 0.46%
- Veröffentlicht 06.08.2016 10:59:38
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not ensure that certain name strings end in a '\0' character, which allows attackers to obtain sensitive information via a crafted applicati...