Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-06 | CVE-2017-0871 | Unspecified vulnerability in Google Android 8.0 An elevation of privilege vulnerability in the Android framework (framework base). | 7.8 |
| 2017-12-06 | CVE-2017-0870 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Android framework (libminikin). | 7.8 |
| 2017-12-06 | CVE-2017-0837 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the Android media framework (libaudiopolicymanager). | 7.8 |
| 2017-12-06 | CVE-2017-17069 | Untrusted Search Path vulnerability in Amazon Audible 2.34.0/2.44.1 ActiveSetupN.exe in Amazon Audible for Windows before November 2017 allows attackers to execute arbitrary DLL code if ActiveSetupN.exe is launched from a directory where an attacker has already created a Trojan horse dwmapi.dll file. | 7.8 |
| 2017-12-06 | CVE-2017-17432 | Reachable Assertion vulnerability in multiple products OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value. | 7.5 |
| 2017-12-05 | CVE-2017-15868 | Improper Input Validation vulnerability in multiple products The bnep_add_connection function in net/bluetooth/bnep/core.c in the Linux kernel before 3.19 does not ensure that an l2cap socket is available, which allows local users to gain privileges via a crafted application. | 7.8 |
| 2017-12-05 | CVE-2017-14355 | Unspecified vulnerability in Microfocus Connected Backup 8.6/8.8.6 A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. | 7.8 |
| 2017-12-05 | CVE-2017-9716 | Unspecified vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qbt1000 driver implements an alternative channel for usermode applications to talk to QSEE applications. | 7.8 |
| 2017-12-05 | CVE-2017-14904 | Use After Free vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a crafted binder request can cause an arbitrary unmap in MediaServer. | 7.8 |
| 2017-12-05 | CVE-2017-14902 | Use After Free vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, due to a race condition in the GLink kernel driver, a Use After Free condition can potentially occur. | 7.0 |