|
256931
|
8.8 |
HIGH
Network
|
google
|
android
|
In the parseURL function of URLStreamHandler, there is improper input validation of the host field. This could lead to a remote elevation of privilege that could enable bypassing user interaction req…
|
CWE-20
Improper Input Validation
|
CVE-2017-13176
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256932
|
4.7 |
MEDIUM
Local
|
google
|
android
|
Access to CNTVCT_EL0 in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear could be used for side channel attacks and this could lead to local information disclosure with no…
|
CWE-200
Information Exposure
|
CVE-2017-13218
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256933
|
7.8 |
HIGH
Local
|
google
|
android
|
In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use after free if a bad header causes the decoder to get caught in a loop while another thread frees the …
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2017-13180
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256934
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In the ihevcd_allocate_static_bufs and ihevcd_create functions of SoftHEVC, there is a possible out-of-bounds write due to a use after free. Both ps_codec_obj and ps_create_op->s_ivd_create_op_t.pv_h…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2017-13179
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256935
|
7.5 |
HIGH
Network
|
apple
|
iphone_os
tvos
|
An issue was discovered in certain Apple products. iOS before 11.2.1 is affected. tvOS before 11.2.1 is affected. The issue involves the "HomeKit" component. It allows remote attackers to modify the …
|
NVD-CWE-noinfo
|
CVE-2017-13903
|
2024-11-21 12:11 |
2017-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256936
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13883
|
2024-11-21 12:11 |
2017-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256937
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11.2 is affected. The issue involves the "IOMobileFrameBuffer" component. It allows attackers to execute arbitrary code in a privileged c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13879
|
2024-11-21 12:11 |
2017-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256938
|
7.1 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows local users to bypass intended memory-read res…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-13878
|
2024-11-21 12:11 |
2017-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256939
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
mac_os_x
watchos
tvos
|
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13876
|
2024-11-21 12:11 |
2017-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256940
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-13875
|
2024-11-21 12:11 |
2017-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
