|
281761
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the UIMDIAG interface.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9968
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281762
|
6.5 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote attackers to read arbitrary files via a crafted XML data.
|
CWE-611
XXE
|
CVE-2015-0194
|
2024-11-21 11:22 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281763
|
7.2 |
HIGH
Network
|
apache
|
roller
|
The weblog page template in Apache Roller 5.1 through 5.1.1 allows remote authenticated users with admin privileges for a weblog to execute arbitrary Java code via crafted Velocity Text Language (aka…
|
CWE-94
Code Injection
|
CVE-2015-0249
|
2024-11-21 11:22 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281764
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
|
CWE-476
NULL Pointer Dereference
|
CVE-2014-9967
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281765
|
7.0 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists in Secure Display.
|
CWE-362
Race Condition
|
CVE-2014-9966
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281766
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of an SCM call.
|
CWE-20
Improper Input Validation
|
CVE-2014-9965
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281767
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in debug functionality.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2014-9964
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281768
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WideVine DRM.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9963
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281769
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of a DRM provisioning command.
|
CWE-20
Improper Input Validation
|
CVE-2014-9962
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281770
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection.
|
CWE-284
Improper Access Control
|
CVE-2014-9961
|
2024-11-21 11:22 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
