Vulnerabilities > Google > Android > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-03-08 CVE-2017-0484 Improper Input Validation vulnerability in Google Android
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot.
local
low complexity
google CWE-20
5.5
2017-03-08 CVE-2017-0483 Improper Input Validation vulnerability in Google Android
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot.
local
low complexity
google CWE-20
5.5
2017-03-08 CVE-2017-0482 Unspecified vulnerability in Google Android
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot.
local
low complexity
google
5.5
2017-02-08 CVE-2017-0451 Information Exposure vulnerability in multiple products
An information disclosure vulnerability in the Qualcomm sound driver could enable a local malicious application to access data outside of its permission levels.
local
high complexity
google linux CWE-200
4.7
2017-02-08 CVE-2017-0448 Information Exposure vulnerability in multiple products
An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google linux CWE-200
5.5
2017-02-08 CVE-2017-0426 Information Exposure vulnerability in Google Android 7.0/7.1.0/7.1.1
An information disclosure vulnerability in the Filesystem could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
2017-02-08 CVE-2017-0425 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in Audioserver could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
2017-02-08 CVE-2017-0424 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in AOSP Messaging could enable a remote attacker using a special crafted file to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
2017-02-08 CVE-2017-0423 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android
An elevation of privilege vulnerability in Bluetooth could enable a proximate attacker to manage access to documents on the device.
high complexity
google CWE-732
5.3
2017-02-08 CVE-2017-0421 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in the Framework APIs could enable a local malicious application to bypass operating system protections that isolate application data from other applications.
local
low complexity
google CWE-200
5.5