Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-06 | CVE-2018-5897 | Out-of-bounds Read vulnerability in Google Android While reading the data from buffer in dci_process_ctrl_status() there can be buffer over-read problem if the len is not checked correctly in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05. | 7.5 |
| 2018-07-06 | CVE-2018-5896 | Out-of-bounds Read vulnerability in Google Android In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, kernel panic may happen due to out-of-bound read, caused by not checking source buffer length against length of packet stream to be copied. | 7.1 |
| 2018-07-06 | CVE-2018-5893 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android While processing a message from firmware in htt_t2h_msg_handler_fast() in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, a buffer overwrite can occur. | 7.8 |
| 2018-07-06 | CVE-2018-5892 | Information Exposure vulnerability in Qualcomm products The Touch Pal application can collect user behavior data without awareness by the user in Snapdragon Mobile and Snapdragon Wear. | 7.5 |
| 2018-07-06 | CVE-2018-5891 | Use After Free vulnerability in Qualcomm products While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. | 8.4 |
| 2018-07-06 | CVE-2018-5890 | Unspecified vulnerability in Google Android If the fdt_totalsize is reported as 0 for the current device tree, it bypasses an error check for a valid device tree in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05. | 7.8 |
| 2018-07-06 | CVE-2018-5889 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android While processing a compressed kernel image, a buffer overflow can occur in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05. | 7.8 |
| 2018-07-06 | CVE-2018-5888 | Out-of-bounds Read vulnerability in Google Android While processing the system path, an out of bounds access can occur in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05. | 7.8 |
| 2018-07-06 | CVE-2018-5887 | Out-of-bounds Read vulnerability in Google Android While processing the USB StrSerialDescriptor array, an array index out of bounds can occur in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05. | 7.8 |
| 2018-07-06 | CVE-2018-5884 | Improper Privilege Management vulnerability in Qualcomm products Improper Access Control in Multimedia in Snapdragon Mobile and Snapdragon Wear, Non-standard applications without permission may acquire permission of Qualcomm-specific proprietary intents. | 8.4 |