Vulnerabilities > Google > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-09 | CVE-2017-0718 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android media framework (mpeg2 decoder). | 7.8 |
| 2017-08-09 | CVE-2017-0716 | Improper Validation of Array Index vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libmpeg2). | 7.8 |
| 2017-08-09 | CVE-2017-0715 | Incorrect Calculation of Buffer Size vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libavc). | 7.8 |
| 2017-08-09 | CVE-2017-0714 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android media framework (h263 decoder). | 7.8 |
| 2017-08-09 | CVE-2017-0713 | Unspecified vulnerability in Google Android A remote code execution vulnerability in the Android libraries (sfntly). | 7.8 |
| 2017-08-09 | CVE-2017-0712 | Improper Input Validation vulnerability in Google Android A elevation of privilege vulnerability in the Android framework (wi-fi service). | 7.8 |
| 2017-07-19 | CVE-2017-9245 | Information Exposure vulnerability in Google News and Weather The Google News and Weather application before 3.3.1 for Android allows remote attackers to read OAuth tokens by sniffing the network and leveraging the lack of SSL. | 7.5 |
| 2017-07-13 | CVE-2017-6249 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-07-07 | CVE-2014-7953 | Race Condition vulnerability in Google Android 4.4.4 Race condition in the bindBackupAgent method in the ActivityManagerService in Android 4.4.4 allows local users with adb shell access to execute arbitrary code or any valid package as system by running "pm install" with the target apk, and simultaneously running a crafted script to process logcat's output looking for a dexopt line, which once found should execute bindBackupAgent with the uid member of the ApplicationInfo parameter set to 1000. | 7.0 |
| 2017-07-07 | CVE-2017-0340 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android 7.1.2 An elevation of privilege vulnerability in the NVIDIA Libnvparser component due to a memcpy into a fixed sized buffer with a user-controlled size could lead to a memory corruption and possible remote code execution. | 7.8 |