Vulnerabilities > Google > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-06 | CVE-2016-5349 | Information Exposure vulnerability in Google Android The high level operating systems (HLOS) was not providing sufficient memory address information to ensure that secure applications inside Qualcomm Secure Execution Environment (QSEE) only write to legitimate memory ranges related to the QSEE secure application's HLOS client. | 5.5 |
| 2017-03-08 | CVE-2017-0532 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the MediaTek video codec driver could enable a local malicious application to access data outside of its permission levels. | 4.7 |
| 2017-03-08 | CVE-2017-0529 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels. | 5.5 |
| 2017-03-08 | CVE-2017-0499 | Improper Input Validation vulnerability in Google Android A denial of service vulnerability in Audioserver could enable a local malicious application to cause a device hang or reboot. | 5.5 |
| 2017-03-08 | CVE-2017-0498 | Unspecified vulnerability in Google Android A denial of service vulnerability in Setup Wizard could allow a local attacker to require Google account sign-in after a factory reset. | 5.5 |
| 2017-03-08 | CVE-2017-0497 | Unspecified vulnerability in Google Android 7.0/7.1.0/7.1.1 A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 4.7 |
| 2017-03-08 | CVE-2017-0496 | Unspecified vulnerability in Google Android A denial of service vulnerability in Setup Wizard could allow a local malicious application to temporarily block access to an affected device. | 5.5 |
| 2017-03-08 | CVE-2017-0495 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in Mediaserver could enable a local malicious application to access data outside of its permission levels. | 5.5 |
| 2017-03-08 | CVE-2017-0494 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in AOSP Messaging could enable a remote attacker using a special crafted file to access data outside of its permission levels. | 5.5 |
| 2017-03-08 | CVE-2017-0492 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Google Android 7.0/7.1.0/7.1.1 An elevation of privilege vulnerability in the System UI could enable a local malicious application to create a UI overlay covering the entire screen. | 5.5 |