Vulnerabilities > Google

DATE CVE VULNERABILITY TITLE RISK
2017-03-08 CVE-2017-0501 Unspecified vulnerability in Google Android
An elevation of privilege vulnerability in MediaTek components, including the M4U driver, sound driver, touchscreen driver, GPU driver, and Command Queue driver, could enable a local malicious application to execute arbitrary code within the context of the kernel.
local
low complexity
google
7.8
2017-03-08 CVE-2017-0500 Unspecified vulnerability in Google Android
An elevation of privilege vulnerability in MediaTek components, including the M4U driver, sound driver, touchscreen driver, GPU driver, and Command Queue driver, could enable a local malicious application to execute arbitrary code within the context of the kernel.
local
low complexity
google
7.8
2017-03-08 CVE-2017-0499 Improper Input Validation vulnerability in Google Android
A denial of service vulnerability in Audioserver could enable a local malicious application to cause a device hang or reboot.
local
low complexity
google CWE-20
5.5
2017-03-08 CVE-2017-0498 Unspecified vulnerability in Google Android
A denial of service vulnerability in Setup Wizard could allow a local attacker to require Google account sign-in after a factory reset.
local
low complexity
google
5.5
2017-03-08 CVE-2017-0497 Unspecified vulnerability in Google Android 7.0/7.1.0/7.1.1
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot.
local
high complexity
google
4.7
2017-03-08 CVE-2017-0496 Unspecified vulnerability in Google Android
A denial of service vulnerability in Setup Wizard could allow a local malicious application to temporarily block access to an affected device.
local
low complexity
google
5.5
2017-03-08 CVE-2017-0495 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in Mediaserver could enable a local malicious application to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
2017-03-08 CVE-2017-0494 Information Exposure vulnerability in Google Android
An information disclosure vulnerability in AOSP Messaging could enable a remote attacker using a special crafted file to access data outside of its permission levels.
local
low complexity
google CWE-200
5.5
2017-03-08 CVE-2017-0492 Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 7.0/7.1.0/7.1.1
An elevation of privilege vulnerability in the System UI could enable a local malicious application to create a UI overlay covering the entire screen.
local
low complexity
google CWE-1021
5.5
2017-03-08 CVE-2017-0491 Unspecified vulnerability in Google Android
An elevation of privilege vulnerability in Package Manager could enable a local malicious application to prevent users from uninstalling applications or removing permissions from applications.
local
low complexity
google
5.5