|
248651
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, userspace-controlled parameters for flash initialization are not sanitized potentially leading to exposure of kernel memory.
|
CWE-200
Information Exposure
|
CVE-2017-8239
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248652
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a camera function.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8238
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248653
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists while loading a firmware image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8237
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248654
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in an IPA driver.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8236
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248655
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a memory structure in a camera driver is not properly protected.
|
NVD-CWE-noinfo
|
CVE-2017-8235
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248656
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, an out of bounds access can potentially occur in a camera function.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-8234
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248657
|
7.8 |
HIGH
Local
|
google
|
android
|
In a camera driver function in all Android releases from CAF using the Linux kernel, a bounds check is missing when writing into an array potentially leading to an out-of-bounds heap write.
|
CWE-787
Out-of-bounds Write
|
CVE-2017-8233
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248658
|
7.8 |
HIGH
Local
|
cisofy
|
lynis
|
Unspecified tests in Lynis before 2.5.0 allow local users to write to arbitrary files or possibly gain privileges via a symlink attack on a temporary file.
|
CWE-59
Link Following
|
CVE-2017-8108
|
2024-11-21 12:33 |
2017-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248659
|
8.8 |
HIGH
Network
|
schneider-electric
|
somachine
|
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC v2.1.0 allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability ex…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2017-7966
|
2024-11-21 12:33 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248660
|
7.3 |
HIGH
Local
|
schneider-electric
|
somachine_hvac
|
A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric's SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7965
|
2024-11-21 12:33 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
