Vulnerabilities > Google > Android > 4.4.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-09 | CVE-2017-0714 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android media framework (h263 decoder). | 7.8 |
| 2017-08-09 | CVE-2017-0713 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android libraries (sfntly). | 7.8 |
| 2017-08-07 | CVE-2015-3839 | NULL Pointer Dereference vulnerability in Google Android The updateMessageStatus function in Android 5.1.1 and earlier allows local users to cause a denial of service (NULL pointer exception and process crash). | 5.5 |
| 2017-07-13 | CVE-2017-6249 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-07-07 | CVE-2014-7954 | Path Traversal vulnerability in Google Android 4.4.4 Directory traversal vulnerability in the doSendObjectInfo method in frameworks/av/media/mtp/MtpServer.cpp in Android 4.4.4 allows physically proximate attackers with a direct connection to the target Android device to upload files outside of the sdcard via a .. | 4.6 |
| 2017-07-07 | CVE-2014-7953 | Race Condition vulnerability in Google Android 4.4.4 Race condition in the bindBackupAgent method in the ActivityManagerService in Android 4.4.4 allows local users with adb shell access to execute arbitrary code or any valid package as system by running "pm install" with the target apk, and simultaneously running a crafted script to process logcat's output looking for a dexopt line, which once found should execute bindBackupAgent with the uid member of the ApplicationInfo parameter set to 1000. | 7.0 |
| 2017-07-06 | CVE-2017-0703 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android A elevation of privilege vulnerability in the Android system ui. | 7.8 |
| 2017-07-06 | CVE-2017-0697 | Missing Release of Resource after Effective Lifetime vulnerability in Google Android A denial of service vulnerability in the Android media framework. | 5.5 |
| 2017-07-06 | CVE-2017-0694 | Improper Input Validation vulnerability in Google Android A denial of service vulnerability in the Android media framework. | 5.5 |
| 2017-07-06 | CVE-2017-0692 | Uncontrolled Recursion vulnerability in Google Android A denial of service vulnerability in the Android media framework. | 5.5 |