|
263811
|
6.2 |
MEDIUM
Local
|
google
|
android
|
In sdp_server_handle_client_req of sdp_server.cc, there is an out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-13290
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263812
|
7.8 |
HIGH
Local
|
google
|
android
|
In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a write size mismatch. This could lead to a local escalation of privileges where the user can start an ac…
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2017-13289
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263813
|
7.8 |
HIGH
Local
|
google
|
android
|
In writeToParcel and readFromParcel of PeriodicAdvertisingReport.java, there is a permission bypass due to a 64/32bit int mismatch. This could lead to a local escalation of privilege where the user c…
|
CWE-682
Incorrect Calculation
|
CVE-2017-13288
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263814
|
7.8 |
HIGH
Local
|
google
|
android
|
In createFromParcel of VerifyCredentialResponse.java, there is a possible invalid parcel read due to improper input validation. This could lead to local escalation of privilege if mPayload in writeTo…
|
CWE-20
Improper Input Validation
|
CVE-2017-13287
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263815
|
7.8 |
HIGH
Local
|
google
|
android
|
In writeToParcel and readFromParcel of OutputConfiguration.java, there is a permission bypass due to mismatched serialization. This could lead to a local escalation of privilege where the user can st…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2017-13286
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263816
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In SvoxSsmlParser and startElement of svox_ssml_parser.cpp, there is a possible out of bounds write due to an uninitialized buffer. This could lead to remote code execution in an unprivileged process…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-13285
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263817
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In config_set_string of config.cc, it is possible to pair a second BT keyboard without user approval due to improper input validation. This could lead to remote escalation of privilege with no additi…
|
CWE-20
Improper Input Validation
|
CVE-2017-13284
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263818
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In avrc_ctrl_pars_vendor_rsp of bluetooth avrcp_ctrl, there is a possible out of bounds write on the stack due to a missing bounds check. This could lead to remote code execution with no additional e…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-13283
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263819
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In avrc_ctrl_pars_vendor_rsp of avrc_pars_ct.cc, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privile…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13282
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263820
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In avrc_pars_browsing_cmd of avrc_pars_tg.cc, there is a possible stack buffer overflow due to an incorrect bounds check. This could lead to remote code execution with no additional execution privile…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13281
|
2024-11-21 12:11 |
2018-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
