Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2017-08-18 CVE-2015-0575 Inadequate Encryption Strength vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, insecure ciphersuites were included in the default configuration.
network
low complexity
google CWE-326
critical
9.8
2017-08-18 CVE-2015-0574 Improper Input Validation vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient.
network
low complexity
google CWE-20
critical
9.8
2017-08-18 CVE-2014-9981 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, an overflow check in the USB interface was insufficient during boot.
network
low complexity
google CWE-119
critical
9.8
2017-08-18 CVE-2014-9980 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a Sample App failed to check a length potentially leading to unauthorized access to secure memory.
network
low complexity
google CWE-119
critical
9.8
2017-08-18 CVE-2014-9979 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a variable is uninitialized in a TrustZone system call potentially leading to the compromise of secure memory.
network
low complexity
google CWE-119
critical
9.8
2017-08-18 CVE-2014-9978 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a QTEE service.
network
low complexity
google CWE-119
critical
9.8
2017-08-18 CVE-2014-9977 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in PlayReady DRM.
network
low complexity
google CWE-119
critical
9.8
2017-08-18 CVE-2014-9976 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in 1x call processing.
network
low complexity
google CWE-119
critical
9.8
2017-08-18 CVE-2014-9975 Inadequate Encryption Strength vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a rollback vulnerability potentially exists in Full Disk Encryption.
network
low complexity
google CWE-326
critical
9.8
2017-08-18 CVE-2014-9974 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, validation of buffer lengths was missing in Keymaster.
network
low complexity
google CWE-119
critical
9.8