|
273741
|
5.5 |
MEDIUM
Local
|
linux
google
|
linux_kernel
android
|
The ioresources_init function in kernel/resource.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 6 and 7 (2013) devices, uses weak permissions for /proc/iomem, which …
|
CWE-200
Information Exposure
|
CVE-2015-8944
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273742
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/video/msm/mdss/mdss_mdp_util.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not verify that a mapping exists before proceeding with an unmap operation, whic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8943
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273743
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 6 devices does not validate the stream state, which allows attackers to gain …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8942
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273744
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/isp/msm_isp_axi_util.c in the Qualcomm components in Android before 2016-08-05 on Nexus 6 and 7 (2013) devices does not properly validate array indexes, which all…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8941
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273745
|
7.8 |
HIGH
Local
|
google
|
android
|
Integer overflow in sound/soc/msm/qdsp6v2/q6lsm.c in the Qualcomm components in Android before 2016-08-05 on Nexus 6 devices allows attackers to gain privileges via a crafted application, aka Android…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8940
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273746
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/video/msm/mdp4_util.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not validate r stages, g stages, or b stages data, which allows attackers to gain …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8939
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273747
|
7.8 |
HIGH
Local
|
google
|
android
|
The MSM camera driver in the Qualcomm components in Android before 2016-08-05 on Nexus 6 devices does not validate input parameters, which allows attackers to gain privileges via a crafted applicatio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8938
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273748
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/char/diag/diagchar_core.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5, 6, and 7 (2013) devices mishandles a socket process, which allows attackers to gain privileges vi…
|
CWE-19
Data Processing Errors
|
CVE-2015-8937
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273749
|
5.1 |
MEDIUM
Local
|
openshift
|
origin
|
openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores router credentials as envvars in the pod when the --credentials option is used, which allows local users to obtain sensitive pri…
|
CWE-255
Credentials Management
|
CVE-2015-8945
|
2024-11-21 11:39 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273750
|
3.3 |
LOW
Local
|
canonical
ecryptfs
|
ubuntu_linux
ecryptfs-utils
|
ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local …
|
CWE-20
Improper Input Validation
|
CVE-2015-8946
|
2024-11-21 11:39 |
2016-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
