|
259621
|
6.5 |
MEDIUM
Adjacent
|
google
|
android
|
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, While processing the RIC Data Descriptor IE in an artificially crafted 802.11 frame with IE …
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-15835
|
2024-11-21 12:15 |
2018-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259622
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the function for writing device values into flash, uninitialized memory ca…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-15844
|
2024-11-21 12:15 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259623
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while accessing the keystore in LK, an integer overflow vulnerability exists which may pote…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-15828
|
2024-11-21 12:15 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259624
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a gpt update, an out of bounds memory access may potentially occur.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-15825
|
2024-11-21 12:15 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259625
|
7.8 |
HIGH
Local
|
google
|
android
|
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while loading a user application in qseecom, an integer overflow could potentially occur if…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-15818
|
2024-11-21 12:15 |
2018-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259626
|
5.3 |
MEDIUM
Network
|
apache
redhat
debian
canonical
|
spamassassin
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
debian_linux
ubuntu_linux
enterprise_linux_eus
|
A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorre…
|
CWE-20
Improper Input Validation
|
CVE-2017-15705
|
2024-11-21 12:15 |
2018-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259627
|
7.8 |
HIGH
Local
|
google
|
android
|
Lack of copy_from_user and information leak in function "msm_ois_subdev_do_ioctl, file msm_ois.c can lead to a camera crash in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) f…
|
CWE-200
Information Exposure
|
CVE-2017-15851
|
2024-11-21 12:15 |
2018-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259628
|
7.0 |
HIGH
Local
|
google
|
android
|
Due to a race condition while processing the power stats debug file to read status, a double free condition can occur in Android releases from CAF using the linux kernel (Android for MSM, Firefox OS …
|
CWE-362
CWE-415
Race Condition
Double Free
|
CVE-2017-15856
|
2024-11-21 12:15 |
2018-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259629
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Android releases from CAF using the linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-06-05, the function UpdateDeviceStatus() writes a local stack b…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-15824
|
2024-11-21 12:15 |
2018-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259630
|
8.8 |
HIGH
Network
|
apache
|
geode
|
When an Apache Geode server versions 1.0.0 to 1.4.0 is configured with a security manager, a user with DATA:WRITE privileges is allowed to deploy code by invoking an internal Geode function. This all…
|
CWE-863
Incorrect Authorization
|
CVE-2017-15695
|
2024-11-21 12:15 |
2018-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
