|
258541
|
7.8 |
HIGH
Local
|
google
|
android
|
A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36991414.
|
CWE-20
Improper Input Validation
|
CVE-2017-0665
|
2024-11-21 12:03 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258542
|
7.8 |
HIGH
Local
|
google
|
android
|
A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36491278.
|
NVD-CWE-noinfo
|
CVE-2017-0664
|
2024-11-21 12:03 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258543
|
7.5 |
HIGH
Network
|
expressionengine
|
expressionengine
|
ExpressionEngine version 2.x < 2.11.8 and version 3.x < 3.5.5 create an object signing token with weak entropy. Successfully guessing the token can lead to remote code execution.
|
CWE-331
Insufficient Entropy
|
CVE-2017-0897
|
2024-11-21 12:03 |
2017-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258544
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated a…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-0663
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258545
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the kernel ION subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low because it f…
|
CWE-200
Information Exposure
|
CVE-2017-0651
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258546
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Synaptics touchscreen driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low beca…
|
CWE-200
Information Exposure
|
CVE-2017-0650
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258547
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the MediaTek sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Mode…
|
NVD-CWE-noinfo
|
CVE-2017-0649
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258548
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
An elevation of privilege vulnerability in the kernel FIQ debugger could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High d…
|
NVD-CWE-noinfo
|
CVE-2017-0648
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258549
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in libziparchive could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could b…
|
CWE-200
Information Exposure
|
CVE-2017-0647
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258550
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate due to detai…
|
CWE-200
Information Exposure
|
CVE-2017-0646
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
