Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-12 | CVE-2017-0599 | Unchecked Return Value vulnerability in Google Android A remote denial of service vulnerability in libhevc in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 7.1 |
| 2017-05-12 | CVE-2017-0465 | Classic Buffer Overflow vulnerability in multiple products An elevation of privilege vulnerability in the Qualcomm ADSPRPC driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
| 2017-05-12 | CVE-2016-10282 | Permissions, Privileges, and Access Controls vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
| 2017-05-12 | CVE-2016-10281 | Permissions, Privileges, and Access Controls vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
| 2017-05-12 | CVE-2016-10280 | Permissions, Privileges, and Access Controls vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek thermal driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.6 |
| 2017-05-02 | CVE-2015-9004 | Permissions, Privileges, and Access Controls vulnerability in multiple products kernel/events/core.c in the Linux kernel before 3.19 mishandles counter grouping, which allows local users to gain privileges via a crafted application, related to the perf_pmu_register and perf_event_open functions. | 7.8 |
| 2017-05-02 | CVE-2014-9940 | Use After Free vulnerability in multiple products The regulator_ena_gpio_free function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted application. | 7.0 |
| 2017-04-25 | CVE-2017-5051 | Integer Overflow or Wraparound vulnerability in Google Chrome An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer. | 8.8 |
| 2017-04-25 | CVE-2017-5050 | Integer Overflow or Wraparound vulnerability in Google Chrome An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer. | 8.8 |
| 2017-04-25 | CVE-2017-5049 | Integer Overflow or Wraparound vulnerability in Google Chrome An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer. | 8.8 |