Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2018-04-03 CVE-2017-15822 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while processing a 802.11 management frame, a buffer overflow may potentially occur.
low complexity
google CWE-119
8.8
2018-04-03 CVE-2017-14894 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in wma_vdev_start_resp_handler(), vdev id is received from firmware as part of WMI_VDEV_START_RESP_EVENTID.
network
low complexity
google CWE-119
7.3
2018-04-03 CVE-2017-14890 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, in the processing of an SWBA event, the vdev_map value is not properly validated leading to a potential buffer overwrite in function wma_send_bcn_buf_ll().
network
low complexity
google CWE-119
7.3
2018-04-03 CVE-2017-14880 Race Condition vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while IPA WAN-driver is processing multiple requests from modem/user-space module, the global variable "num_q6_rule" does not have a mutex lock and thus can be accessed and modified by multiple threads.
local
low complexity
google CWE-362
7.8
2018-04-03 CVE-2017-11075 Use After Free vulnerability in Google Android
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, if cmd_pkt and reg_pkt are called from different userspace threads, a use after free condition can potentially occur in wdsp_glink_write().
local
low complexity
google CWE-416
7.8
2018-03-30 CVE-2017-9723 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
The touchscreen driver synaptics_dsx in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-05, the size of a stack-allocated buffer can be set to a value which exceeds the size of the stack.
local
low complexity
google CWE-119
7.8
2018-03-30 CVE-2017-9692 NULL Pointer Dereference vulnerability in Google Android
When an atomic commit is issued on a writeback panel with a NULL output_layer parameter in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-06-03, a NULL pointer dereference may potentially occur.
local
low complexity
google CWE-476
7.8
2018-03-30 CVE-2017-17771 Classic Buffer Overflow vulnerability in Google Android
In msm_isp_prepare_v4l2_buf in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-02-12, an array out of bounds can occur.
local
low complexity
google CWE-120
7.8
2018-03-30 CVE-2017-15859 Out-of-bounds Write vulnerability in Google Android
While processing the QCA_NL80211_VENDOR_SUBCMD_SET_TXPOWER_SCALE_DECR_DB vendor command, in which attribute QCA_WLAN_VENDOR_ATTR_TXPOWER_SCALE_DECR_DB contains fewer than 1 byte, in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-08-11 a buffer overrun occurs.
network
low complexity
google CWE-787
7.5
2018-03-30 CVE-2017-15852 Information Exposure vulnerability in Google Android
Information leak of the ISPIF base address in Android for MSM, Firefox OS for MSM, and QRD Android can occur in the camera driver.
local
low complexity
google CWE-200
7.8