|
269041
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in MediaTek components, including the thermal driver and video driver, could enable a local malicious application to execute arbitrary code within the context …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-8446
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269042
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in MediaTek components, including the thermal driver and video driver, could enable a local malicious application to execute arbitrary code within the context …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-8445
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269043
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
An elevation of privilege vulnerability in the Qualcomm camera could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High becau…
|
CWE-284
Improper Access Control
|
CVE-2016-8444
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269044
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Possible unauthorized memory access in the hypervisor. Incorrect configuration provides access to subsystem page tables. Product: Android. Versions: Kernel 3.18. Android ID: A-32576499. References: Q…
|
CWE-285
Improper Authorization
|
CVE-2016-8443
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269045
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Possible unauthorized memory access in the hypervisor. Lack of input validation could allow hypervisor memory to be accessed by the HLOS. Product: Android. Versions: Kernel 3.18. Android ID: A-316259…
|
CWE-20
Improper Input Validation
|
CVE-2016-8442
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269046
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Possible buffer overflow in the hypervisor. Inappropriate usage of a static array could lead to a buffer overrun. Product: Android. Versions: Kernel 3.18. Android ID: A-31625904. References: QC-CR#10…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8441
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269047
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
Possible buffer overflow in SMMU system call. Improper input validation in ADSP SID2CB system call may result in hypervisor memory overwrite. Product: Android. Versions: Kernel 3.18. Android ID: A-31…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8440
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269048
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
Possible buffer overflow in trust zone access control API. Buffer overflow may occur due to lack of buffer size checking. Product: Android. Versions: Kernel 3.18. Android ID: A-31625204. References: …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8439
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269049
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
Integer overflow leading to a TOCTOU condition in hypervisor PIL. An integer overflow exposes a race condition that may be used to bypass (Peripheral Image Loader) PIL authentication. Product: Androi…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-8438
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269050
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
Improper input validation in Access Control APIs. Access control API may return memory range checking incorrectly. Product: Android. Versions: Kernel 3.18. Android ID: A-31623057. References: QC-CR#1…
|
CWE-20
Improper Input Validation
|
CVE-2016-8437
|
2024-11-21 11:59 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
