|
249201
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, due to a type downcast, a value may improperly pass validation and cause an out of bounds write later.
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2017-8260
|
2024-11-21 12:33 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249202
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, when accessing the sde_rotator debug interface for register reading with multiple processes, one process can free the d…
|
CWE-362
Race Condition
|
CVE-2017-8257
|
2024-11-21 12:33 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249203
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, array out of bounds access can occur if userspace sends more than 16 multicast addresses.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-8256
|
2024-11-21 12:33 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249204
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in boot.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-8255
|
2024-11-21 12:33 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249205
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, an audio client pointer is dereferenced before being checked if it is valid.
|
CWE-200
Information Exposure
|
CVE-2017-8254
|
2024-11-21 12:33 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249206
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, kernel memory can potentially be overwritten if an invalid master is sent from userspace.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-8253
|
2024-11-21 12:33 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249207
|
9.8 |
CRITICAL
Network
|
apple
|
iphone_os
|
A buffer overflow may occur in the processing of a downlink NAS message in Qualcomm Telephony as used in Apple iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8248
|
2024-11-21 12:33 |
2017-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249208
|
7.8 |
HIGH
Local
|
google
|
android
|
A buffer overflow can occur in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android when processing a firmware image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8243
|
2024-11-21 12:33 |
2017-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249209
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android release from CAF using the Linux kernel, while processing fastboot boot command when verified boot feature is disabled, with length greater than boot image buffe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8273
|
2024-11-21 12:33 |
2017-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249210
|
7.8 |
HIGH
Local
|
google
|
android
|
Out of bound memory write can happen in the MDSS Rotator driver in all Qualcomm products with Android releases from CAF using the Linux kernel by an unsanitized userspace-controlled parameter.
|
CWE-787
Out-of-bounds Write
|
CVE-2017-8271
|
2024-11-21 12:33 |
2017-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
