Vulnerabilities > Google > Android

DATE CVE VULNERABILITY TITLE RISK
2017-05-12 CVE-2017-0594 Classic Buffer Overflow vulnerability in Google Android
An elevation of privilege vulnerability in codecs/aacenc/SoftAACEncoder2.cpp in libstagefright in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process.
local
low complexity
google CWE-120
7.8
2017-05-12 CVE-2017-0593 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to obtain access to custom permissions.
local
low complexity
google CWE-732
7.8
2017-05-12 CVE-2017-0592 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
2017-05-12 CVE-2017-0591 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libavc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
2017-05-12 CVE-2017-0590 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
2017-05-12 CVE-2017-0589 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
2017-05-12 CVE-2017-0588 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in id3/ID3.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
2017-05-12 CVE-2017-0587 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libmpeg2 in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
local
low complexity
google CWE-119
7.8
2017-05-12 CVE-2017-0493 Insecure Storage of Sensitive Information vulnerability in Google Android 7.0/7.1.0/7.1.1
An information disclosure vulnerability in File-Based Encryption could enable a local malicious attacker to bypass operating system protections for the lock screen.
local
low complexity
google CWE-922
5.5
2017-05-12 CVE-2017-0465 Classic Buffer Overflow vulnerability in multiple products
An elevation of privilege vulnerability in the Qualcomm ADSPRPC driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
local
high complexity
linux google CWE-120
7.0