Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-02 | CVE-2018-9496 | Out-of-bounds Write vulnerability in Google Android 9.0 In ixheaacd_real_synth_fft_p3 of ixheaacd_esbr_fft.c there is a possible out of bounds write due to a missing bounds check. | 7.8 |
| 2018-10-02 | CVE-2018-9492 | Incorrect Authorization vulnerability in Google Android 8.0/8.1/9.0 In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass. | 7.8 |
| 2018-10-02 | CVE-2018-9491 | Integer Overflow or Wraparound vulnerability in Google Android In AMediaCodecCryptoInfo_new of NdkMediaCodec.cpp, there is a possible out-of-bounds write due to an integer overflow. | 7.8 |
| 2018-10-02 | CVE-2018-9490 | Incorrect Type Conversion or Cast vulnerability in Google Android In CollectValuesOrEntriesImpl of elements.cc, there is possible remote code execution due to type confusion. | 7.8 |
| 2018-10-02 | CVE-2018-9473 | Integer Overflow or Wraparound vulnerability in Google Android 8.0 In ihevcd_parse_sei_payload of ihevcd_parse_headers.c, there is a possible out-of-bounds write due to an integer overflow. | 7.8 |
| 2018-09-19 | CVE-2018-5905 | Race Condition vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, a race condition while accessing num of clients in DIAG services can lead to out of boundary access. | 7.0 |
| 2018-09-19 | CVE-2018-3573 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while relocating kernel images with a specially crafted boot image, an out of bounds access can occur. | 7.8 |
| 2018-09-19 | CVE-2018-11904 | NULL Pointer Dereference vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, asynchronous callbacks received a pointer to a callers local variable. | 7.8 |
| 2018-09-19 | CVE-2018-11903 | Improper Validation of Array Index vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of length validation check for value received from caller function used as an array index for WMA interfaces can lead to OOB write in WLAN HOST. | 7.8 |
| 2018-09-19 | CVE-2018-11902 | Improper Validation of Array Index vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of length validation check for value received from firmware can lead to OOB access in WLAN HOST. | 7.8 |