Vulnerabilities > Google > Android > 4.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-08 | CVE-2017-0500 | Privilege Escalation vulnerability in Google Android MediaTek Components An elevation of privilege vulnerability in MediaTek components, including the M4U driver, sound driver, touchscreen driver, GPU driver, and Command Queue driver, could enable a local malicious application to execute arbitrary code within the context of the kernel. | 9.3 |
| 2017-03-08 | CVE-2017-0491 | Privilege Escalation vulnerability in Google Android Package Manager An elevation of privilege vulnerability in Package Manager could enable a local malicious application to prevent users from uninstalling applications or removing permissions from applications. network google | 4.3 |
| 2017-03-08 | CVE-2017-0489 | Remote Privilege Escalation vulnerability in Google Android Location Manager An elevation of privilege vulnerability in Location Manager could enable a local malicious application to bypass operating system protections for location data. network google | 4.3 |
| 2017-03-08 | CVE-2017-0481 | Classic Buffer Overflow vulnerability in Google Android An elevation of privilege vulnerability in NFC could enable a proximate attacker to execute arbitrary code within the context of a privileged process. | 9.3 |
| 2017-03-08 | CVE-2017-0480 | Privilege Escalation vulnerability in Google Android Audioserver An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. | 9.3 |
| 2017-03-08 | CVE-2017-0479 | Privilege Escalation vulnerability in Google Android Audioserver An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. | 9.3 |
| 2017-03-08 | CVE-2017-0475 | Improper Input Validation vulnerability in Google Android An elevation of privilege vulnerability in the recovery verifier could enable a local malicious application to execute arbitrary code within the context of the kernel. | 9.3 |
| 2017-03-07 | CVE-2016-10200 | Use After Free vulnerability in multiple products Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel before 4.8.14 allows local users to gain privileges or cause a denial of service (use-after-free) by making multiple bind system calls without properly ascertaining whether a socket has the SOCK_ZAPPED status, related to net/l2tp/l2tp_ip.c and net/l2tp/l2tp_ip6.c. | 7.0 |
| 2017-02-08 | CVE-2017-0451 | Information Exposure vulnerability in multiple products An information disclosure vulnerability in the Qualcomm sound driver could enable a local malicious application to access data outside of its permission levels. | 2.6 |
| 2017-02-08 | CVE-2017-0450 | Privilege Escalation vulnerability in Google Nexus Audioserver An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. | 9.3 |