Vulnerabilities > Google > Android > 4.4

DATE CVE VULNERABILITY TITLE RISK
2017-01-13 CVE-2016-8467 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the bootloader could enable a local attacker to execute arbitrary modem commands on the device.
local
low complexity
google CWE-264
4.9
4.9
2017-01-12 CVE-2016-6492 Permissions, Privileges, and Access Controls vulnerability in Google Android
The MT6573FDVT_SetRegHW function in camera_fdvt.c in the MediaTek driver for Linux allows local users to gain privileges via a crafted application that makes an MT6573FDVTIOC_T_SET_FDCONF_CMD IOCTL call.
network
google CWE-264
critical
 9.3
9.3
2017-01-12 CVE-2017-0402 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to access data outside of its permission levels.
network
google CWE-200
4.3
4.3
2017-01-12 CVE-2017-0401 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels.
network
google CWE-200
4.3
4.3
2017-01-12 CVE-2017-0400 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to access data outside of its permission levels.
network
google CWE-200
4.3
4.3
2017-01-12 CVE-2017-0399 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels.
network
google CWE-200
4.3
4.3
2017-01-12 CVE-2017-0397 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in id3/ID3.cpp in libstagefright in Mediaserver could enable a local malicious application to access data outside of its permission levels.
network
google CWE-200
4.3
4.3
2017-01-12 CVE-2017-0396 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in visualizer/EffectVisualizer.cpp in libeffects in Mediaserver could enable a local malicious application to access data outside of its permission levels.
network
google CWE-200
4.3
4.3
2017-01-12 CVE-2017-0395 Privilege Escalation vulnerability in Google Android
An elevation of privilege vulnerability in Contacts could enable a local malicious application to silently create contact information.
network
google
4.3
4.3
2017-01-12 CVE-2017-0393 Denial of Service vulnerability in Google Android Mediaserver
A denial of service vulnerability in libvpx in Mediaserver could enable a remote attacker to use a specially crafted file to cause a device hang or reboot.
network
google
7.1
7.1