Vulnerabilities > Google > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-01-12 CVE-2016-6492 Permissions, Privileges, and Access Controls vulnerability in Google Android
The MT6573FDVT_SetRegHW function in camera_fdvt.c in the MediaTek driver for Linux allows local users to gain privileges via a crafted application that makes an MT6573FDVTIOC_T_SET_FDCONF_CMD IOCTL call.
network
google CWE-264
critical
 9.3
9.3
2017-01-12 CVE-2017-0387 Privilege Escalation vulnerability in Google Android
An elevation of privilege vulnerability in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google
critical
 9.3
9.3
2017-01-12 CVE-2017-0386 Privilege Escalation vulnerability in Google Android
An elevation of privilege vulnerability in the libnl library could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google
critical
 9.3
9.3
2017-01-12 CVE-2017-0385 Privilege Escalation vulnerability in Google Android Audioserver
An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google
critical
 9.3
9.3
2017-01-12 CVE-2017-0384 Privilege Escalation vulnerability in Google Android Audioserver
An elevation of privilege vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google
critical
 9.3
9.3
2017-01-12 CVE-2017-0383 Integer Overflow or Wraparound vulnerability in Google Android 7.0/7.1.0
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious application to execute arbitrary code within the context of a privileged process.
network
google CWE-190
critical
 9.3
9.3
2017-01-12 CVE-2017-0381 Integer Overflow or Wraparound vulnerability in Google Android
An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could enable a local malicious application to access data outside of its permission levels.
network
google CWE-190
critical
 9.3
9.3
2017-01-12 CVE-2016-8436 Permissions, Privileges, and Access Controls vulnerability in multiple products
An elevation of privilege vulnerability in the Qualcomm video driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
linux google CWE-264
critical
 9.3
9.3
2017-01-12 CVE-2016-8433 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the MediaTek driver could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
google CWE-264
critical
 9.3
9.3
2017-01-12 CVE-2016-8423 Permissions, Privileges, and Access Controls vulnerability in Google Android
An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel.
network
google CWE-264
critical
 9.3
9.3