Vulnerabilities > Google > Android > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-04-04 CVE-2016-10298 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in Qualcomm closed source components.
network
low complexity
google CWE-264
critical
 9.8
9.8
2018-04-04 CVE-2016-10299 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in Qualcomm closed source components.
network
low complexity
google CWE-264
critical
 9.8
9.8
2018-04-04 CVE-2016-8484 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in Qualcomm closed source components.
network
low complexity
google CWE-264
critical
 9.8
9.8
2018-04-04 CVE-2016-8487 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in Qualcomm closed source components.
network
low complexity
google CWE-264
critical
 9.8
9.8
2018-04-04 CVE-2016-8488 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in Qualcomm closed source components.
network
low complexity
google CWE-264
critical
 9.8
9.8
2018-04-04 CVE-2017-13266 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check.
network
low complexity
google CWE-119
critical
 9.8
9.8
2018-04-04 CVE-2017-13272 Use After Free vulnerability in Google Android
In alarm_ready_generic of alarm.cc, there is a possible out of bounds write due to a use after free.
network
low complexity
google CWE-416
critical
 9.8
9.8
2018-04-04 CVE-2017-13267 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check.
network
low complexity
google CWE-119
critical
 9.8
9.8
2018-04-04 CVE-2017-13274 Origin Validation Error vulnerability in Google Android
In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination.
network
low complexity
google CWE-346
critical
 9.8
9.8
2018-04-04 CVE-2017-13281 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 8.0/8.1
In avrc_pars_browsing_cmd of avrc_pars_tg.cc, there is a possible stack buffer overflow due to an incorrect bounds check.
network
low complexity
google CWE-119
critical
 9.8
9.8