Vulnerabilities > Google > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-08-16 | CVE-2016-5860 | Permissions, Privileges, and Access Controls vulnerability in Google Android In an audio driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, if a function is called with a very large length, an integer overflow could occur followed by a heap buffer overflow. | 7.6 |
2017-08-16 | CVE-2016-5859 | Permissions, Privileges, and Access Controls vulnerability in Google Android In a sound driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, if a function is called with a very large length, an integer overflow could occur followed by a buffer overflow. | 7.6 |
2017-08-16 | CVE-2016-5853 | Permissions, Privileges, and Access Controls vulnerability in Google Android In an audio driver in all Qualcomm products with Android releases from CAF using the Linux kernel, when a sanity check encounters a length value not in the correct range, an error message is printed, but code execution continues in the same way as for a correct length value. | 7.6 |
2017-08-09 | CVE-2017-0736 | Unspecified vulnerability in Google Android A denial of service vulnerability in the Android media framework (libavc). network google | 7.1 |
2017-07-17 | CVE-2016-10398 | Permissions, Privileges, and Access Controls vulnerability in Google Android 6.0 Android 6.0 has an authentication bypass for attackers with root and physical access. | 7.2 |
2017-07-13 | CVE-2017-6249 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
2017-07-07 | CVE-2014-7953 | Race Condition vulnerability in Google Android 4.4.4 Race condition in the bindBackupAgent method in the ActivityManagerService in Android 4.4.4 allows local users with adb shell access to execute arbitrary code or any valid package as system by running "pm install" with the target apk, and simultaneously running a crafted script to process logcat's output looking for a dexopt line, which once found should execute bindBackupAgent with the uid member of the ApplicationInfo parameter set to 1000. | 7.0 |
2017-07-06 | CVE-2017-6248 | Remote Code Execution vulnerability in Google Android 7.1.2 An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
2017-07-06 | CVE-2017-0706 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 7.1.2 A elevation of privilege vulnerability in the Broadcom wi-fi driver. | 7.2 |
2017-07-06 | CVE-2017-0705 | Unspecified vulnerability in Google Android 7.1.2 A elevation of privilege vulnerability in the Broadcom wi-fi driver. | 7.2 |