Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-08-18 CVE-2016-10386 Improper Validation of Array Index vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, an array index out of bounds vulnerability exists in LPP.
network
low complexity
google CWE-129
critical
 9.8
9.8
2017-08-18 CVE-2016-10385 Use After Free vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, a use-after-free vulnerability exists in IMS RCS.
network
low complexity
google CWE-416
critical
 9.8
9.8
2017-08-18 CVE-2016-10384 Improper Input Validation vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, an assertion was potentially reachable in a WLAN driver ioctl.
network
low complexity
google CWE-20
critical
 9.8
9.8
2017-08-18 CVE-2016-10383 Race Condition vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, there is a TOCTOU race condition in Secure UI.
network
high complexity
google CWE-362
8.1
8.1
2017-08-18 CVE-2016-10382 Improper Access Control vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, access control to the I2C bus is not sufficient.
network
low complexity
google CWE-284
critical
 9.8
9.8
2017-08-18 CVE-2016-10381 DEPRECATED: Location vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, the UE can send unprotected MeasurementReports revealing UE location.
network
low complexity
google CWE-1
critical
 9.8
9.8
2017-08-18 CVE-2016-10380 DEPRECATED: Location vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, the UE can send unprotected MeasurementReports revealing UE location.
network
low complexity
google CWE-1
critical
 9.8
9.8
2017-08-18 CVE-2016-10347 Improper Input Validation vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, an argument to a hypervisor function is not properly validated.
network
low complexity
google CWE-20
critical
 9.8
9.8
2017-08-18 CVE-2016-10346 Integer Overflow or Wraparound vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in the hypervisor.
network
low complexity
google CWE-190
critical
 9.8
9.8
2017-08-18 CVE-2016-10344 NULL Pointer Dereference vulnerability in Google Android
In all Qualcomm products with Android releases from CAF using the Linux kernel, the use of an out-of-range pointer offset is potentially possible in LTE.
network
low complexity
google CWE-476
critical
 9.8
9.8