|
246571
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper configuration of script may lead to unprivileged access.
|
CWE-269
Improper Privilege Management
|
CVE-2018-11911
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246572
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /persist/ whic…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-11910
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246573
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /cache/ which …
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-11909
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246574
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /data/ which p…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-11908
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246575
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /firmware/ whi…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-11907
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246576
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, there is a security concern with default privileged access to ADB and debug-fs.
|
CWE-276
Incorrect Default Permissions
|
CVE-2018-11906
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246577
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, freeing device memory in driver probe failure will result in double free issue in power modu…
|
CWE-415
Double Free
|
CVE-2018-11823
|
2024-11-21 12:44 |
2018-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246578
|
4.2 |
MEDIUM
Physics
|
samsung
|
840_evo_firmware
|
An issue was discovered on Samsung 840 EVO devices. Vendor-specific commands may allow access to the disk-encryption key.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-12038
|
2024-11-21 12:44 |
2018-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246579
|
4.0 |
MEDIUM
Physics
|
samsung
micron
|
840_evo_firmware
850_evo_firmware
t3_firmware
t5_firmware
crucial_mx100_firmware
crucial_mx200_firmware
crucial_mx300_firmware
|
An issue was discovered on Samsung 840 EVO and 850 EVO devices (only in "ATA high" mode, not vulnerable in "TCG" or "ATA max" mode), Samsung T3 and T5 portable drives, and Crucial MX100, MX200 and MX…
|
NVD-CWE-noinfo
|
CVE-2018-12037
|
2024-11-21 12:44 |
2018-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246580
|
7.8 |
HIGH
Local
|
intel
|
parallel_studio_xe
|
Heap overflow in Intel Trace Analyzer 2018 in Intel Parallel Studio XE 2018 Update 3 may allow an authenticated user to potentially escalate privileges via local access.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12174
|
2024-11-21 12:44 |
2018-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
