|
252031
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, buffer sizes in the message passing interface are not properly validated.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14917
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252032
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, buffer sizes in the message passing interface are not properly validated.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14916
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252033
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, handles in the global client structure can become stale.
|
CWE-20
Improper Input Validation
|
CVE-2017-14914
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252034
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a count value that is read from a file is not properly validated.
|
CWE-20
Improper Input Validation
|
CVE-2017-14909
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252035
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the SafeSwitch test application does not properly validate the number of blocks to veri…
|
CWE-20
Improper Input Validation
|
CVE-2017-14908
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252036
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a crafted binder request can cause an arbitrary unmap in MediaServer.
|
CWE-416
Use After Free
|
CVE-2017-14904
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252037
|
7.0 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, due to a race condition in the GLink kernel driver, a Use After Free condition can pote…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2017-14902
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252038
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while handling the QSEOS_RPMB_CHECK_PROV_STATUS_COMMAND, a userspace buffer is directly…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14897
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252039
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, after a subsystem reset, iwpriv is not giving correct information.
|
CWE-672
Operation on a Resource after Expiration or Release
|
CVE-2017-14895
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252040
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, cryptographic strength is reduced while deriving disk encryption key.
|
NVD-CWE-noinfo
|
CVE-2017-14907
|
2024-11-21 12:13 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
