Vulnerabilities > Google > Android > 5.0.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-19 | CVE-2017-7376 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects. | 9.8 |
| 2018-02-19 | CVE-2017-7375 | XXE vulnerability in multiple products A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes). | 9.8 |
| 2017-12-28 | CVE-2015-7889 | Permission Issues vulnerability in Google Android The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICK_REPLY_BACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain sensitive information via a crafted application that sends a crafted intent. | 5.5 |
| 2017-11-16 | CVE-2017-0860 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Android system (inputdispatcher). | 5.3 |
| 2017-11-16 | CVE-2017-0852 | Out-of-bounds Write vulnerability in Google Android 5.0.2/5.1.1/6.0 A denial of service vulnerability in the Android media framework (libhevc). | 7.5 |
| 2017-11-16 | CVE-2017-0851 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android media framework (libhevc). | 5.3 |
| 2017-11-16 | CVE-2017-0848 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android media framework (libeffects). | 5.3 |
| 2017-11-16 | CVE-2017-0845 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android A denial of service vulnerability in the Android framework (syncstorageengine). | 7.5 |
| 2017-11-16 | CVE-2017-0841 | Integer Overflow or Wraparound vulnerability in Google Android A remote code execution vulnerability in the Android system (libutils). | 7.8 |
| 2017-11-16 | CVE-2017-0840 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the Android media framework (libstagefright). | 7.5 |