Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-18 | CVE-2017-9045 | Missing Encryption of Sensitive Data vulnerability in Google I/O 2017 5.0.3 The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof Feed and Schedule data by creating a modified blocks_v4.json file. | 5.9 |
| 2017-05-16 | CVE-2016-10242 | Race Condition vulnerability in Google Android A time-of-check time-of-use race condition could potentially exist in the secure file system in all Android releases from CAF using the Linux kernel. | 7.0 |
| 2017-05-16 | CVE-2016-10239 | Integer Overflow or Wraparound vulnerability in Google Android In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur. | 7.8 |
| 2017-05-16 | CVE-2016-10238 | Permissions, Privileges, and Access Controls vulnerability in Google Android In QSEE in all Android releases from CAF using the Linux kernel access control may potentially be bypassed due to a page alignment issue. | 7.8 |
| 2017-05-16 | CVE-2016-10237 | Improper Access Control vulnerability in Google Android If shared content protection memory were passed as the secure camera memory buffer by the HLOS to a trusted application (TA) in all Android releases from CAF using the Linux kernel, the TA would not detect an issue and it would be treated as secure memory. | 7.8 |
| 2017-05-16 | CVE-2015-9003 | Cryptographic Issues vulnerability in Google Android In TrustZone a cryptographic issue can potentially occur in all Android releases from CAF using the Linux kernel. | 7.8 |
| 2017-05-16 | CVE-2015-9002 | Numeric Errors vulnerability in Google Android In TrustZone an out-of-range pointer offset vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel. | 7.8 |
| 2017-05-16 | CVE-2015-9001 | Information Exposure vulnerability in Google Android In TrustZone an information exposure vulnerability can potentially occur in all Android releases from CAF using the Linux kernel. | 5.5 |
| 2017-05-16 | CVE-2015-9000 | NULL Pointer Dereference vulnerability in Google Android In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel. | 7.8 |
| 2017-05-16 | CVE-2015-8999 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In TrustZone a buffer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel while loading an ELF file. | 7.8 |