Vulnerabilities > Google > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-07 | CVE-2014-7954 | Path Traversal vulnerability in Google Android 4.4.4 Directory traversal vulnerability in the doSendObjectInfo method in frameworks/av/media/mtp/MtpServer.cpp in Android 4.4.4 allows physically proximate attackers with a direct connection to the target Android device to upload files outside of the sdcard via a .. | 2.1 |
| 2017-06-27 | CVE-2015-3840 | Improper Access Control vulnerability in Google Android The MessageStatusReceiver service in the AndroidManifest.XML in Android 5.1.1 and earlier allows local users to alter sent/received statuses of SMS and MMS messages without the associated "WRITE_SMS" permission. | 2.1 |
| 2017-03-08 | CVE-2017-0498 | Denial of Service vulnerability in Google Android Setup Wizard A denial of service vulnerability in Setup Wizard could allow a local attacker to require Google account sign-in after a factory reset. | 2.1 |
| 2017-03-08 | CVE-2017-0532 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the MediaTek video codec driver could enable a local malicious application to access data outside of its permission levels. | 2.6 |
| 2017-02-08 | CVE-2016-8414 | Information Exposure vulnerability in multiple products An information disclosure vulnerability in the Qualcomm Secure Execution Environment Communicator could enable a local malicious application to access data outside of its permission levels. | 2.6 |
| 2017-02-08 | CVE-2017-0423 | Incorrect Permission Assignment for Critical Resource vulnerability in Google Android An elevation of privilege vulnerability in Bluetooth could enable a proximate attacker to manage access to documents on the device. | 2.9 |
| 2017-02-08 | CVE-2017-0451 | Information Exposure vulnerability in multiple products An information disclosure vulnerability in the Qualcomm sound driver could enable a local malicious application to access data outside of its permission levels. | 2.6 |
| 2017-01-12 | CVE-2016-8462 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the bootloader could enable a local attacker to access data outside of its permission level. | 2.1 |
| 2017-01-12 | CVE-2016-8470 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels. | 2.6 |
| 2017-01-12 | CVE-2016-8471 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels. | 2.6 |