Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2018-10-02 CVE-2018-9503 Out-of-bounds Read vulnerability in Google Android
In rfc_process_mx_message of rfc_ts_frames.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
2018-10-02 CVE-2018-9501 Unspecified vulnerability in Google Android
In the SetupWizard, there is a possible Factory Reset Protection bypass due to a permissions bypass.
local
low complexity
google
7.8
2018-10-02 CVE-2018-9498 Integer Overflow or Wraparound vulnerability in Google Android
In SkSampler::Fill of SkSampler.cpp, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
2018-10-02 CVE-2018-9497 Out-of-bounds Write vulnerability in Google Android
In impeg2_fmt_conv_yuv420p_to_yuv420sp_uv_av8 of impeg2_format_conv.s there is a possible out of bounds write due to missing bounds check.
local
low complexity
google CWE-787
7.8
2018-10-02 CVE-2018-9496 Out-of-bounds Write vulnerability in Google Android 9.0
In ixheaacd_real_synth_fft_p3 of ixheaacd_esbr_fft.c there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
7.8
2018-10-02 CVE-2018-9492 Incorrect Authorization vulnerability in Google Android 8.0/8.1/9.0
In checkGrantUriPermissionLocked of ActivityManagerService.java, there is a possible permissions bypass.
local
low complexity
google CWE-863
7.8
2018-10-02 CVE-2018-9491 Integer Overflow or Wraparound vulnerability in Google Android
In AMediaCodecCryptoInfo_new of NdkMediaCodec.cpp, there is a possible out-of-bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
2018-10-02 CVE-2018-9490 Incorrect Type Conversion or Cast vulnerability in Google Android
In CollectValuesOrEntriesImpl of elements.cc, there is possible remote code execution due to type confusion.
local
low complexity
google CWE-704
7.8
2018-10-02 CVE-2018-9473 Integer Overflow or Wraparound vulnerability in Google Android 8.0
In ihevcd_parse_sei_payload of ihevcd_parse_headers.c, there is a possible out-of-bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
2018-09-19 CVE-2018-5905 Race Condition vulnerability in Google Android
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, a race condition while accessing num of clients in DIAG services can lead to out of boundary access.
local
high complexity
google CWE-362
7.0