|
279061
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9909
|
2024-11-21 11:21 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279062
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The get_icu_disp_value_src_php function in ext/intl/locale/locale_methods.c in PHP before 5.3.29, 5.4.x before 5.4.30, and 5.5.x before 5.5.14 does not properly restrict calls to the ICU uresbund.cpp…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9912
|
2024-11-21 11:21 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279063
|
9.8 |
CRITICAL
Network
|
icu-project
|
international_components_for_unicode
|
Stack-based buffer overflow in the ures_getByKeyWithFallback function in common/uresbund.cpp in International Components for Unicode (ICU) before 54.1 for C/C++ allows remote attackers to cause a den…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9911
|
2024-11-21 11:21 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279064
|
9.8 |
CRITICAL
Network
|
debian
dbd-mysql_project
|
debian_linux
dbd-mysql
|
Use-after-free vulnerability in DBD::mysql before 4.029 allows attackers to cause a denial of service (program crash) or possibly execute arbitrary code via vectors related to a lost server connectio…
|
CWE-416
Use After Free
|
CVE-2014-9906
|
2024-11-21 11:21 |
2016-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279065
|
5.5 |
MEDIUM
Local
|
linux
google
|
linux_kernel
android
|
The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not initialize a certain data structure,…
|
CWE-200
Information Exposure
|
CVE-2014-9900
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279066
|
5.5 |
MEDIUM
Local
|
google
|
android
|
drivers/usb/host/ehci-msm2.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices omits certain minimum calculations before copying data, which allows attackers to obtain sensit…
|
CWE-200
Information Exposure
|
CVE-2014-9899
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279067
|
5.5 |
MEDIUM
Local
|
google
|
android
|
arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate input parameters, which allows attackers …
|
CWE-200
Information Exposure
|
CVE-2014-9898
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279068
|
5.5 |
MEDIUM
Local
|
google
|
android
|
sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate certain user-space data, which allows attackers to obtain sensitive…
|
CWE-200
Information Exposure
|
CVE-2014-9897
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279069
|
5.5 |
MEDIUM
Local
|
google
|
android
|
drivers/char/adsprpc.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate parameters and return values, which allows attackers to obtai…
|
CWE-200
Information Exposure
|
CVE-2014-9896
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279070
|
5.5 |
MEDIUM
Local
|
linux
google
|
linux_kernel
android
|
drivers/media/media-device.c in the Linux kernel before 3.11, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize certain data structures, which allows …
|
CWE-200
Information Exposure
|
CVE-2014-9895
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
