|
278401
|
5.5 |
MEDIUM
Local
|
google
|
android
|
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not ensure that certain name strings end in a '\0' character, which allows attackers to o…
|
CWE-200
Information Exposure
|
CVE-2014-9894
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278402
|
5.5 |
MEDIUM
Local
|
google
|
android
|
drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not properly determine the size of Gamut LUT data, which allows attackers to obtai…
|
CWE-200
Information Exposure
|
CVE-2014-9893
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278403
|
5.5 |
MEDIUM
Local
|
linux
google
|
linux_kernel
android
|
The snd_compr_tstamp function in sound/core/compress_offload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize a ti…
|
CWE-200
Information Exposure
|
CVE-2014-9892
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278404
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate certain buffer addresses, which allows attackers to gain privileges via a crafted a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9891
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278405
|
7.8 |
HIGH
Local
|
google
|
android
|
Off-by-one error in drivers/media/platform/msm/camera_v2/sensor/cci/msm_cci.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileg…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9890
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278406
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate CPP frame messages, which allows attackers to gai…
|
CWE-20
Improper Input Validation
|
CVE-2014-9889
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278407
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
arch/arm/mm/dma-mapping.c in the Linux kernel before 3.13 on ARM platforms, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not prevent executable DMA mappings, which might…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9888
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278408
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate certain length values, which allows attackers to gain privileges via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9887
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278409
|
7.8 |
HIGH
Local
|
google
|
android
|
arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate input parameters, which allows attackers …
|
CWE-20
Improper Input Validation
|
CVE-2014-9886
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278410
|
7.8 |
HIGH
Local
|
google
|
android
|
Format string vulnerability in drivers/thermal/qpnp-adc-tm.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices allows attackers to gain privileges via a crafted application t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9885
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
