|
257011
|
9.1 |
CRITICAL
Network
|
google
|
android
|
An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65123471.
|
CWE-200
Information Exposure
|
CVE-2017-13185
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257012
|
7.8 |
HIGH
Local
|
google
|
android
|
In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyncInjector. This could lead to a local elevation of privilege enabling code execution as a privilege…
|
CWE-416
Use After Free
|
CVE-2017-13184
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257013
|
7.0 |
HIGH
Local
|
google
|
android
|
In the OMXNodeInstance::useBuffer and IOMX::freeBuffer functions, there is a possible use after free due to a race condition if the user frees the buffer while it's being used in another thread. This…
|
CWE-362
Race Condition
|
CVE-2017-13183
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257014
|
7.8 |
HIGH
Local
|
google
|
android
|
In the sendFormatChange function of ACodec, there is a possible integer overflow which could lead to an out-of-bounds write. This could lead to a local elevation of privilege enabling code execution …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-13182
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257015
|
7.8 |
HIGH
Local
|
google
|
android
|
In the doGetThumb and getThumbnail functions of MtpServer, there is a possible double free due to not NULLing out a freed pointer. This could lead to an local elevation of privilege enabling code exe…
|
CWE-415
Double Free
|
CVE-2017-13181
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257016
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In the initDecoder function of SoftAVCDec, there is a possible out-of-bounds write to mCodecCtx due to a use after free when buffer allocation fails. This could lead to remote code execution as a pri…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2017-13178
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257017
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In several functions of libhevc, NEON registers are not preserved. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction is…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13177
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257018
|
8.8 |
HIGH
Network
|
google
|
android
|
In the parseURL function of URLStreamHandler, there is improper input validation of the host field. This could lead to a remote elevation of privilege that could enable bypassing user interaction req…
|
CWE-20
Improper Input Validation
|
CVE-2017-13176
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257019
|
4.7 |
MEDIUM
Local
|
google
|
android
|
Access to CNTVCT_EL0 in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear could be used for side channel attacks and this could lead to local information disclosure with no…
|
CWE-200
Information Exposure
|
CVE-2017-13218
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257020
|
7.8 |
HIGH
Local
|
google
|
android
|
In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use after free if a bad header causes the decoder to get caught in a loop while another thread frees the …
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2017-13180
|
2024-11-21 12:11 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
