Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-14 | CVE-2017-0645 | Information Exposure vulnerability in Google Android An elevation of privilege vulnerability in Bluetooth could enable a local malicious application to access data outside of its permission levels. | 5.5 |
| 2017-06-14 | CVE-2017-0644 | Unspecified vulnerability in Google Android A remote denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 5.5 |
| 2017-06-14 | CVE-2017-0643 | Unspecified vulnerability in Google Android A remote denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 5.5 |
| 2017-06-14 | CVE-2017-0642 | Unspecified vulnerability in Google Android A remote denial of service vulnerability in libhevc in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 5.5 |
| 2017-06-14 | CVE-2017-0641 | Improper Initialization vulnerability in Google Android A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 5.5 |
| 2017-06-14 | CVE-2017-0640 | Unspecified vulnerability in Google Android A remote denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. | 5.5 |
| 2017-06-14 | CVE-2017-0639 | Information Exposure vulnerability in Google Android An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. | 5.5 |
| 2017-06-14 | CVE-2017-5697 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Intel Active Management Technology Firmware Insufficient clickjacking protection in the Web User Interface of Intel AMT firmware versions before 9.1.40.1000, 9.5.60.1952, 10.0.50.1004, 11.0.0.1205, and 11.6.25.1129 potentially allowing a remote attacker to hijack users web clicks via attacker's crafted web page. | 6.5 |
| 2017-06-13 | CVE-2017-8242 | Race Condition vulnerability in Google Android In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver potentially leading to an arbitrary memory write. | 5.9 |
| 2017-06-13 | CVE-2017-8239 | Information Exposure vulnerability in Google Android In all Android releases from CAF using the Linux kernel, userspace-controlled parameters for flash initialization are not sanitized potentially leading to exposure of kernel memory. | 5.5 |