|
256821
|
5.3 |
MEDIUM
Network
|
google
|
android
|
A information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-71766721.
|
CWE-200
Information Exposure
|
CVE-2017-13297
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256822
|
5.3 |
MEDIUM
Network
|
google
|
android
|
A information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-70897454.
|
CWE-200
Information Exposure
|
CVE-2017-13296
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256823
|
5.3 |
MEDIUM
Network
|
google
|
android
|
A denial of service vulnerability in the Android framework (package installer). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-62537081.
|
CWE-20
Improper Input Validation
|
CVE-2017-13295
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256824
|
5.3 |
MEDIUM
Network
|
google
|
android
|
A information disclosure vulnerability in the Android framework (aosp email application). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-71814449.
|
CWE-200
Information Exposure
|
CVE-2017-13294
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256825
|
7.8 |
HIGH
Local
|
google
|
android
|
In the nfc_hci_cmd_received() function of core.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the kernel with no additio…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-13293
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256826
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In wl_get_assoc_ies of wl_cfg80211.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-13292
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256827
|
7.5 |
HIGH
Network
|
google
|
android
|
In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible NULL pointer dereference due to missing bounds checks. This could lead to remote denial of service with no additional execution pr…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-13291
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256828
|
6.2 |
MEDIUM
Local
|
google
|
android
|
In sdp_server_handle_client_req of sdp_server.cc, there is an out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-13290
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256829
|
7.8 |
HIGH
Local
|
google
|
android
|
In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a write size mismatch. This could lead to a local escalation of privileges where the user can start an ac…
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2017-13289
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256830
|
7.8 |
HIGH
Local
|
google
|
android
|
In writeToParcel and readFromParcel of PeriodicAdvertisingReport.java, there is a permission bypass due to a 64/32bit int mismatch. This could lead to a local escalation of privilege where the user c…
|
CWE-682
Incorrect Calculation
|
CVE-2017-13288
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
