Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2017-06-13 CVE-2015-9023 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.
local
low complexity
google CWE-119
7.8
7.8
2017-06-13 CVE-2015-9022 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs.
local
high complexity
google CWE-362
7.0
7.0
2017-06-13 CVE-2015-9020 NULL Pointer Dereference vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory.
local
low complexity
google CWE-476
7.8
7.8
2017-06-13 CVE-2014-9967 NULL Pointer Dereference vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
local
low complexity
google CWE-476
7.8
7.8
2017-06-13 CVE-2014-9966 Race Condition vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists in Secure Display.
local
high complexity
google CWE-362
7.0
7.0
2017-06-13 CVE-2014-9965 Improper Input Validation vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of an SCM call.
local
low complexity
google CWE-20
7.8
7.8
2017-06-13 CVE-2014-9964 Integer Overflow or Wraparound vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in debug functionality.
local
low complexity
google CWE-190
7.8
7.8
2017-06-13 CVE-2014-9963 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WideVine DRM.
local
low complexity
google CWE-119
7.8
7.8
2017-06-13 CVE-2014-9962 Improper Input Validation vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of a DRM provisioning command.
local
low complexity
google CWE-20
7.8
7.8
2017-06-13 CVE-2014-9961 Improper Access Control vulnerability in Google Android
In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection.
local
low complexity
google CWE-284
7.8
7.8