Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-05-12 CVE-2016-10281 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
high complexity
google CWE-264
7.6
2017-05-12 CVE-2016-10280 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
high complexity
google CWE-264
7.6
2017-05-12 CVE-2016-10276 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
google CWE-264
critical
9.3
2017-05-12 CVE-2016-10275 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
google CWE-264
critical
9.3
2017-05-12 CVE-2016-10274 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the MediaTek touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
google CWE-264
critical
9.3
2017-05-02 CVE-2017-0331 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
An elevation of privilege vulnerability in the NVIDIA video driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
google linux CWE-367
critical
9.3
2017-05-02 CVE-2015-9004 Permissions, Privileges, and Access Controls vulnerability in multiple products
kernel/events/core.c in the Linux kernel before 3.19 mishandles counter grouping, which allows local users to gain privileges via a crafted application, related to the perf_pmu_register and perf_event_open functions.
local
low complexity
linux google CWE-264
7.8
2017-05-02 CVE-2014-9940 Use After Free vulnerability in multiple products
The regulator_ena_gpio_free function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted application.
local
high complexity
linux google CWE-416
7.0
2017-04-25 CVE-2017-5051 Integer Overflow or Wraparound vulnerability in Google Chrome
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer.
network
low complexity
google CWE-190
8.8
2017-04-25 CVE-2017-5050 Integer Overflow or Wraparound vulnerability in Google Chrome
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer.
network
low complexity
google CWE-190
8.8