Vulnerabilities > Google > Android > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-18 | CVE-2016-10392 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, a driver can potentially leak kernel memory. | 9.8 |
| 2017-08-18 | CVE-2016-5871 | Integer Overflow or Wraparound vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, an integer overflow to buffer overflow vulnerability exists when loading an image file. | 9.8 |
| 2017-08-18 | CVE-2016-5872 | Improper Input Validation vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, arguments to several QTEE syscalls are not properly validated. | 9.8 |
| 2017-04-17 | CVE-2016-6726 | Unspecified vulnerability in Google Android Unspecified vulnerability in Qualcomm components in Android on Nexus 6 and Android One devices. | 9.8 |
| 2017-04-17 | CVE-2016-6727 | Permissions, Privileges, and Access Controls vulnerability in Google Android The Qualcomm GPS subsystem in Android on Android One devices allows remote attackers to execute arbitrary code. | 9.8 |
| 2017-04-13 | CVE-2016-1155 | Injection vulnerability in Google Android HTTP header injection vulnerability in the URLConnection class in Android OS 2.2 through 6.0 allows remote attackers to execute arbitrary scripts or set arbitrary values in cookies. | 9.8 |
| 2017-04-13 | CVE-2014-7920 | Permissions, Privileges, and Access Controls vulnerability in Google Android mediaserver in Android 2.2 through 5.x before 5.1 allows attackers to gain privileges. | 9.8 |
| 2017-04-13 | CVE-2014-7921 | Permissions, Privileges, and Access Controls vulnerability in Google Android mediaserver in Android 4.0.3 through 5.x before 5.1 allows attackers to gain privileges. | 9.8 |
| 2017-04-04 | CVE-2016-10229 | Improperly Implemented Security Check for Standard vulnerability in multiple products udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag. | 9.8 |
| 2017-02-08 | CVE-2016-8418 | Improper Access Control vulnerability in Google Android A remote code execution vulnerability in the Qualcomm crypto driver could enable a remote attacker to execute arbitrary code within the context of the kernel. | 9.8 |