Vulnerabilities > Google > Android > 4.0

DATE CVE VULNERABILITY TITLE RISK
2017-04-07 CVE-2017-0562 Unspecified vulnerability in Google Android
An elevation of privilege vulnerability in the MediaTek touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
local
low complexity
google
7.8
7.8
2017-04-07 CVE-2017-0560 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the factory reset process could enable a local malicious attacker to access data from the previous owner.
local
low complexity
google CWE-200
5.5
5.5
2017-04-07 CVE-2017-0559 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in libskia could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
5.5
2017-04-07 CVE-2017-0558 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in Mediaserver could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
5.5
2017-04-07 CVE-2017-0554 Missing Authorization vulnerability in Google Android
An elevation of privilege vulnerability in the Telephony component could enable a local malicious application to access capabilities outside of its permission levels.
local
low complexity
google CWE-862
7.8
7.8
2017-04-07 CVE-2017-0547 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in libmedia in Mediaserver could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
5.5
2017-04-07 CVE-2017-0546 NULL Pointer Dereference vulnerability in Google Android
An elevation of privilege vulnerability in SurfaceFlinger could enable a local malicious application to execute arbitrary code within the context of a privileged process.
local
low complexity
google CWE-476
7.8
7.8
2017-04-07 CVE-2017-0544 Operation on a Resource after Expiration or Release vulnerability in Google Android
An elevation of privilege vulnerability in CameraBase could enable a local malicious application to execute arbitrary code.
local
low complexity
google CWE-672
7.8
7.8
2017-04-07 CVE-2017-0541 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in sonivox in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
7.8
2017-04-06 CVE-2016-5349 Information Exposure vulnerability in Google Android
The high level operating systems (HLOS) was not providing sufficient memory address information to ensure that secure applications inside Qualcomm Secure Execution Environment (QSEE) only write to legitimate memory ranges related to the QSEE secure application's HLOS client.
local
low complexity
google CWE-200
5.5
5.5