Vulnerabilities > Google > High

DATE CVE VULNERABILITY TITLE RISK
2018-11-27 CVE-2018-11266 Improper Input Validation vulnerability in Google Android
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper input validation can lead to an improper access to already freed up dci client entries while closing dci client.
local
low complexity
google CWE-20
7.8
7.8
2018-11-27 CVE-2018-11261 Use After Free vulnerability in Google Android
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, there is a possible Use-after-free issue in Media Codec process.
local
low complexity
google CWE-416
7.8
7.8
2018-11-27 CVE-2018-11260 Integer Overflow or Wraparound vulnerability in Google Android
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a fast Initial link setup (FILS) connection request, integer overflow may lead to a buffer overflow when the key length is zero.
local
low complexity
google CWE-190
7.8
7.8
2018-11-27 CVE-2017-11078 Out-of-bounds Read vulnerability in Google Android
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the boot image header, an out of bounds read can occur in boot.
local
low complexity
google CWE-125
7.8
7.8
2018-11-14 CVE-2018-9545 Out-of-bounds Write vulnerability in Google Android 9.0
In BTA_HdRegisterApp of bta_hd_api.cc, there is a possible out-of-bound write due to a missing bounds check.
local
low complexity
google CWE-787
7.8
7.8
2018-11-14 CVE-2018-9542 Out-of-bounds Read vulnerability in Google Android
In avrc_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
7.5
2018-11-14 CVE-2018-9541 Out-of-bounds Read vulnerability in Google Android
In avrc_pars_vendor_rsp of avcr_pars_ct.cc, there is a possible out-of-bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
7.5
2018-11-14 CVE-2018-9540 Out-of-bounds Read vulnerability in Google Android
In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.c, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
7.5
2018-11-14 CVE-2018-9539 Race Condition vulnerability in Google Android 8.0/8.1/9.0
In the ClearKey CAS descrambler, there is a possible use after free due to a race condition.
local
high complexity
google CWE-362
7.0
7.0
2018-11-14 CVE-2018-9537 Out-of-bounds Write vulnerability in Google Android 9.0
In CAacDecoder_DecodeFrame of aacdecode.cpp, there is a possible out-of-bounds write due to a missing bounds check.
network
low complexity
google CWE-787
8.8
8.8