|
282451
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in PlayReady DRM.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9977
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282452
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in 1x call processing.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9976
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282453
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, a rollback vulnerability potentially exists in Full Disk Encryption.
|
CWE-326
Inadequate Encryption Strength
|
CVE-2014-9975
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282454
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, validation of buffer lengths was missing in Keymaster.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9974
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282455
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, validation of a buffer length was missing in a PlayReady DRM routine.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9973
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282456
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, disabling asserts can potentially cause a NULL pointer dereference during an out-of-memory condition.
|
CWE-476
NULL Pointer Dereference
|
CVE-2014-9972
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282457
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, disabling asserts causes an instruction inside of an assert to not be executed resulting in incorrect control flow.
|
CWE-20
Improper Input Validation
|
CVE-2014-9971
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282458
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, the GPS client may use an insecure cryptographic algorithm.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2014-9969
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282459
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the UIMDIAG interface.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9968
|
2024-11-21 11:22 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282460
|
6.5 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
XML External Entity (XXE) vulnerability in IBM Sterling B2B Integrator 5.1 and 5.2 and IBM Sterling File Gateway 2.1 and 2.2 allows remote attackers to read arbitrary files via a crafted XML data.
|
CWE-611
XXE
|
CVE-2015-0194
|
2024-11-21 11:22 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
