Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-10 | CVE-2017-11003 | Classic Buffer Overflow vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while updating a firmware image, data is read from flash into RAM without checking that the data fits into allotted RAM size. | 7.8 |
| 2018-01-10 | CVE-2017-15849 | Use After Free vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a LayerStack can be destroyed in between Validate and Commit by the application resulting in a Use After Free condition. | 7.8 |
| 2018-01-10 | CVE-2017-11069 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, manipulation of SafeSwitch Image data can result in Heap overflow. | 7.8 |
| 2017-12-06 | CVE-2017-6276 | Use After Free vulnerability in Google Android NVIDIA mediaserver contains a vulnerability where it is possible a use after free malfunction can occur due to an incorrect bounds check which could enable unauthorized code execution and possibly lead to elevation of privileges. | 7.8 |
| 2017-12-06 | CVE-2017-6263 | Use After Free vulnerability in Google Android NVIDIA driver contains a vulnerability where it is possible a use after free malfunction can occur due to improper usage of the list_for_each kernel macro which could enable unauthorized code execution and possibly lead to elevation of privileges. | 7.8 |
| 2017-12-06 | CVE-2017-6262 | Use After Free vulnerability in Google Android NVIDIA driver contains a vulnerability where it is possible a use after free malfunction can occur due to a race condition which could enable unauthorized code execution and possibly lead to elevation of privileges. | 7.0 |
| 2017-12-06 | CVE-2017-13175 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the NVIDIA libwilhelm. | 7.5 |
| 2017-12-06 | CVE-2017-13174 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the kernel edl. | 7.8 |
| 2017-12-06 | CVE-2017-13173 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek system server. | 7.8 |
| 2017-12-06 | CVE-2017-13172 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek bluetooth driver. | 7.8 |