Vulnerabilities > Google
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-09 | CVE-2017-0716 | Improper Validation of Array Index vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libmpeg2). | 7.8 |
| 2017-08-09 | CVE-2017-0715 | Incorrect Calculation of Buffer Size vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libavc). | 7.8 |
| 2017-08-09 | CVE-2017-0714 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android media framework (h263 decoder). | 7.8 |
| 2017-08-09 | CVE-2017-0713 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android libraries (sfntly). | 7.8 |
| 2017-08-09 | CVE-2017-0712 | Improper Input Validation vulnerability in Google Android A elevation of privilege vulnerability in the Android framework (wi-fi service). | 7.8 |
| 2017-08-07 | CVE-2015-3839 | NULL Pointer Dereference vulnerability in Google Android The updateMessageStatus function in Android 5.1.1 and earlier allows local users to cause a denial of service (NULL pointer exception and process crash). | 5.5 |
| 2017-07-19 | CVE-2017-9245 | Information Exposure vulnerability in Google News and Weather The Google News and Weather application before 3.3.1 for Android allows remote attackers to read OAuth tokens by sniffing the network and leveraging the lack of SSL. | 7.5 |
| 2017-07-17 | CVE-2016-10398 | Permissions, Privileges, and Access Controls vulnerability in Google Android 6.0 Android 6.0 has an authentication bypass for attackers with root and physical access. | 6.2 |
| 2017-07-13 | CVE-2017-6249 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-07-07 | CVE-2014-7954 | Path Traversal vulnerability in Google Android 4.4.4 Directory traversal vulnerability in the doSendObjectInfo method in frameworks/av/media/mtp/MtpServer.cpp in Android 4.4.4 allows physically proximate attackers with a direct connection to the target Android device to upload files outside of the sdcard via a .. | 4.6 |