Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-04-04 CVE-2017-13299 Unspecified vulnerability in Google Android
A other vulnerability in the Android media framework (libavc).
network
low complexity
google
7.5
7.5
2018-04-04 CVE-2017-13293 Out-of-bounds Write vulnerability in Google Android
In the nfc_hci_cmd_received() function of core.c, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
7.8
7.8
2018-04-04 CVE-2017-13291 NULL Pointer Dereference vulnerability in Google Android
In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible NULL pointer dereference due to missing bounds checks.
network
low complexity
google CWE-476
7.5
7.5
2018-04-04 CVE-2017-13289 Incorrect Calculation of Buffer Size vulnerability in Google Android
In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a write size mismatch.
local
low complexity
google CWE-131
7.8
7.8
2018-04-04 CVE-2017-13288 Incorrect Calculation vulnerability in Google Android 8.0/8.1
In writeToParcel and readFromParcel of PeriodicAdvertisingReport.java, there is a permission bypass due to a 64/32bit int mismatch.
local
low complexity
google CWE-682
7.8
7.8
2018-04-04 CVE-2017-13287 Improper Input Validation vulnerability in Google Android
In createFromParcel of VerifyCredentialResponse.java, there is a possible invalid parcel read due to improper input validation.
local
low complexity
google CWE-20
7.8
7.8
2018-04-04 CVE-2017-13286 Deserialization of Untrusted Data vulnerability in Google Android 8.0/8.1
In writeToParcel and readFromParcel of OutputConfiguration.java, there is a permission bypass due to mismatched serialization.
local
low complexity
google CWE-502
7.8
7.8
2018-04-04 CVE-2017-13280 Out-of-bounds Read vulnerability in Google Android
In the FrameSequence_gif::FrameSequence_gif function of libframesequence, there is a out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
7.5
2018-04-04 CVE-2017-13278 Use After Free vulnerability in Google Android
In MediaPlayerService::Client::notify of MediaPlayerService.cpp, there is a possible use after free.
local
low complexity
google CWE-416
7.8
7.8
2018-04-04 CVE-2017-13277 Out-of-bounds Write vulnerability in Google Android
In ihevcd_fmt_conv of ihevcd_fmt_conv.c, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
7.8
7.8