Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2017-01-12 CVE-2017-0385 Privilege Escalation vulnerability in Google Android Audioserver
An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google
critical
 9.3
9.3
2017-01-12 CVE-2017-0384 Privilege Escalation vulnerability in Google Android Audioserver
An elevation of privilege vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google
critical
 9.3
9.3
2017-01-12 CVE-2017-0383 Integer Overflow or Wraparound vulnerability in Google Android 7.0/7.1.0
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google CWE-190
critical
 9.3
9.3
2017-01-12 CVE-2017-0382 Remote Code Execution vulnerability in Google Android Framesequence Library
A remote code execution vulnerability in the Framesequence library could enable an attacker using a specially crafted file to execute arbitrary code in the context of an unprivileged process.
network
google
6.8
6.8
2017-01-12 CVE-2017-0381 Integer Overflow or Wraparound vulnerability in Google Android
An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could enable a local malicious application to access data outside of its permission levels.
network
google CWE-190
critical
 9.3
9.3
2017-01-12 CVE-2016-8472 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels.
network
high complexity
google CWE-200
2.6
2.6
2017-01-12 CVE-2016-8471 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels.
network
high complexity
google CWE-200
2.6
2.6
2017-01-12 CVE-2016-8470 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels.
network
high complexity
google CWE-200
2.6
2.6
2017-01-12 CVE-2016-8462 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the bootloader could enable a local attacker to access data outside of its permission level.
local
low complexity
google CWE-200
2.1
2.1
2017-01-12 CVE-2016-8448 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in MediaTek components, including the thermal driver and video driver, could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
high complexity
google CWE-264
7.6
7.6