Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-05-12 CVE-2017-0593 Incorrect Permission Assignment for Critical Resource vulnerability in Google Android
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to obtain access to custom permissions.
network
google CWE-732
critical
9.3
2017-05-12 CVE-2017-0592 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
network
google CWE-119
critical
9.3
2017-05-12 CVE-2017-0591 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libavc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
network
google CWE-119
critical
9.3
2017-05-12 CVE-2017-0590 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
network
google CWE-119
critical
9.3
2017-05-12 CVE-2017-0589 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
network
google CWE-119
critical
9.3
2017-05-12 CVE-2017-0588 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in id3/ID3.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
network
google CWE-119
critical
9.3
2017-05-12 CVE-2017-0587 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
A remote code execution vulnerability in libmpeg2 in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing.
network
google CWE-119
critical
9.3
2017-05-12 CVE-2017-0493 Insecure Storage of Sensitive Information vulnerability in Google Android 7.0/7.1.0/7.1.1
An information disclosure vulnerability in File-Based Encryption could enable a local malicious attacker to bypass operating system protections for the lock screen.
network
google CWE-922
4.3
2017-05-12 CVE-2017-0465 Classic Buffer Overflow vulnerability in multiple products
An elevation of privilege vulnerability in the Qualcomm ADSPRPC driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
high complexity
linux google CWE-120
7.6
2017-05-12 CVE-2016-10282 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
high complexity
google CWE-264
7.6