Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-06 | CVE-2017-0667 | Improper Input Validation vulnerability in Google Android A elevation of privilege vulnerability in the Android framework. | 7.8 |
| 2017-07-06 | CVE-2017-0666 | Incorrect Calculation vulnerability in Google Android A elevation of privilege vulnerability in the Android framework. | 7.8 |
| 2017-07-06 | CVE-2017-0665 | Improper Input Validation vulnerability in Google Android A elevation of privilege vulnerability in the Android framework. | 7.8 |
| 2017-07-06 | CVE-2017-0664 | Unspecified vulnerability in Google Android A elevation of privilege vulnerability in the Android framework. | 7.8 |
| 2017-06-30 | CVE-2017-10709 | Improper Authentication vulnerability in Google Android 6.0 The lockscreen on Elephone P9000 devices (running Android 6.0) allows physically proximate attackers to bypass a wrong-PIN lockout feature by pressing backspace after each PIN guess. | 6.8 |
| 2017-06-29 | CVE-2017-3750 | Unspecified vulnerability in Google Android On Lenovo VIBE mobile phones, the Lenovo Security Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3749. high complexity google | 6.4 |
| 2017-06-29 | CVE-2017-3749 | Unspecified vulnerability in Google Android On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3750. high complexity google | 6.4 |
| 2017-06-29 | CVE-2017-3748 | Unspecified vulnerability in Google Android On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly known as 'rooting' or "jail breaking" a device). | 7.8 |
| 2017-06-27 | CVE-2015-3840 | Improper Access Control vulnerability in Google Android The MessageStatusReceiver service in the AndroidManifest.XML in Android 5.1.1 and earlier allows local users to alter sent/received statuses of SMS and MMS messages without the associated "WRITE_SMS" permission. | 5.5 |
| 2017-06-14 | CVE-2017-0663 | Out-of-bounds Write vulnerability in Google Android A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. | 7.8 |