Vulnerabilities > Google > Android > 14.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-21 | CVE-2017-11001 | Information Exposure vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, the length of the MAC address is not checked which may cause out of bounds read. | 5.5 |
| 2017-09-21 | CVE-2017-11000 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, in an ISP Camera kernel driver function, an incorrect bounds check may potentially lead to an out-of-bounds write. | 7.8 |
| 2017-09-21 | CVE-2017-10999 | Unspecified vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, concurrent calls into ioctl RMNET_IOCTL_ADD_MUX_CHANNEL in ipa wan driver may lead to memory corruption due to missing locks. | 7.8 |
| 2017-09-21 | CVE-2017-10998 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, in audio_aio_ion_lookup_vaddr, the buffer length, which is user input, ends up being used to validate if the buffer is fully within the valid region. | 7.8 |
| 2017-09-21 | CVE-2017-10997 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, using a debugfs node, a write to a PCIe register can cause corruption of kernel memory. | 7.8 |
| 2017-09-21 | CVE-2017-10996 | Information Exposure vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, out of bounds access is possible in c_show(), due to compat_hwcap_str[] not being NULL-terminated. | 5.5 |
| 2017-09-08 | CVE-2017-0794 | Race Condition vulnerability in Google Android A elevation of privilege vulnerability in the Upstream kernel scsi driver. | 7.8 |
| 2017-09-08 | CVE-2017-0793 | Information Exposure vulnerability in Google Android A information disclosure vulnerability in the N/A memory subsystem. | 5.5 |
| 2017-01-12 | CVE-2016-6774 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in Package Manager could enable a local malicious application to bypass operating system protections that isolate application data from other applications. | 4.7 |
| 2016-12-13 | CVE-2016-6706 | Permissions, Privileges, and Access Controls vulnerability in Google Android An elevation of privilege vulnerability in libstagefright in Mediaserver in Android 7.0 before 2016-11-01 could enable a local malicious application to execute arbitrary code within the context of a privileged process. | 7.8 |