Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-06-13 CVE-2015-9028 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a cryptographic routine.
network
google CWE-119
critical
 9.3
9.3
2017-06-13 CVE-2015-9027 NULL Pointer Dereference vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
network
google CWE-476
critical
 9.3
9.3
2017-06-13 CVE-2015-9026 NULL Pointer Dereference vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
network
google CWE-476
critical
 9.3
9.3
2017-06-13 CVE-2015-9025 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a QTEE application.
network
google CWE-119
critical
 9.3
9.3
2017-06-13 CVE-2015-9024 Improper Access Control vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed to QTEE applications.
network
google CWE-284
4.3
4.3
2017-06-13 CVE-2015-9023 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.
network
google CWE-119
critical
 9.3
9.3
2017-06-13 CVE-2015-9022 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs.
network
high complexity
google CWE-362
7.6
7.6
2017-06-13 CVE-2015-9021 Improper Access Control vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, access control to SMEM memory was not enabled.
network
google CWE-284
4.3
4.3
2017-06-13 CVE-2015-9020 NULL Pointer Dereference vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory.
network
google CWE-476
critical
 9.3
9.3
2017-06-13 CVE-2014-9967 NULL Pointer Dereference vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
network
google CWE-476
critical
 9.3
9.3