Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-12 | CVE-2017-13218 | Information Exposure vulnerability in Google Android Access to CNTVCT_EL0 in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear could be used for side channel attacks and this could lead to local information disclosure with no additional execution privileges needed in FSM9055, IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MSM8909W, QCA4531, QCA9980, QCN5502, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845. | 4.7 |
| 2018-01-12 | CVE-2017-13217 | Out-of-bounds Write vulnerability in Google Android In DisplayFtmItem in the bootloader, there is an out-of-bounds write due to reading a string without verifying that it's null-terminated. | 7.8 |
| 2018-01-12 | CVE-2017-13216 | Out-of-bounds Write vulnerability in Google Android In ashmem_ioctl of ashmem.c, there is an out-of-bounds write due to insufficient locking when accessing asma. | 7.8 |
| 2018-01-12 | CVE-2017-13215 | Unspecified vulnerability in Google Android A elevation of privilege vulnerability in the Upstream kernel skcipher. | 7.8 |
| 2018-01-12 | CVE-2017-13214 | Improper Input Validation vulnerability in Google Android In the hardware HEVC decoder, some media files could cause a page fault. | 7.5 |
| 2018-01-12 | CVE-2017-13213 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Broadcom bcmdhd driver. | 7.8 |
| 2018-01-12 | CVE-2017-13212 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Android system (systemui). | 7.8 |
| 2018-01-12 | CVE-2017-13211 | Resource Exhaustion vulnerability in Google Android 8.0 In bta_scan_results_cb_impl of btif_ble_scanner.cc, there is possible resource exhaustion if a large number of repeated BLE scan results are received. | 7.5 |
| 2018-01-12 | CVE-2017-13210 | Out-of-bounds Write vulnerability in Google Android In CameraDeviceClient::submitRequestList of CameraDeviceClient.cpp, there is an out-of-bounds write if metadataSize is too small. | 7.8 |
| 2018-01-12 | CVE-2017-13209 | Missing Authorization vulnerability in Google Android 8.0/8.1 In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. | 7.8 |