Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2017-08-09 CVE-2017-0719 Missing Release of Resource after Effective Lifetime vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (mpeg2 decoder).
local
low complexity
google CWE-772
7.8
7.8
2017-08-09 CVE-2017-0718 Unspecified vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (mpeg2 decoder).
local
low complexity
google
7.8
7.8
2017-08-09 CVE-2017-0716 Improper Validation of Array Index vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (libmpeg2).
local
low complexity
google CWE-129
7.8
7.8
2017-08-09 CVE-2017-0715 Incorrect Calculation of Buffer Size vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (libavc).
local
low complexity
google CWE-131
7.8
7.8
2017-08-09 CVE-2017-0714 Unspecified vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (h263 decoder).
local
low complexity
google
7.8
7.8
2017-08-09 CVE-2017-0713 Unspecified vulnerability in Google Android
A remote code execution vulnerability in the Android libraries (sfntly).
local
low complexity
google
7.8
7.8
2017-08-09 CVE-2017-0712 Improper Input Validation vulnerability in Google Android
A elevation of privilege vulnerability in the Android framework (wi-fi service).
local
low complexity
google CWE-20
7.8
7.8
2017-08-09 CVE-2015-7894 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samsung Galaxy S6 Edge Firmware Lrx22G.G925Vvru1Aoe2
The DCMProvider service in Samsung LibQjpeg on a Samsung SM-G925V device running build number LRX22G.G925VVRU1AOE2 allows remote attackers to cause a denial of service (segmentation fault and process crash) and execute arbitrary code via a crafted JPG.
network
low complexity
samsung CWE-119
8.8
8.8
2017-08-09 CVE-2015-6498 7PK - Security Features vulnerability in Alcatel-Lucent Home Device Manager 4.1.9/4.2.0/4.2.1
Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices.
network
low complexity
alcatel-lucent CWE-254
7.5
7.5
2017-08-09 CVE-2015-3277 Information Exposure vulnerability in MOD NSS Project MOD NSS
The mod_nss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring.
network
low complexity
mod-nss-project CWE-200
7.5
7.5