|
283001
|
7.8 |
HIGH
Local
|
linux
google
|
linux_kernel
android
|
The Linux kernel before 3.11 on ARM platforms, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly consider user-space access to the TPIDRURW register, which allow…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9870
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283002
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/isp/msm_isp_stats_util.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate certain index values, which all…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9869
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283003
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/sensor/csiphy/msm_csiphy.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via an appl…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9868
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283004
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/isp/msm_isp_axi_util.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate the number of streams, which allo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9867
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283005
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/media/platform/msm/camera_v2/sensor/csid/msm_csid.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate a certain parameter, which allows…
|
CWE-20
Improper Input Validation
|
CVE-2014-9866
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283006
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly restrict user-space input, which allows attackers to gain privileges v…
|
CWE-284
Improper Access Control
|
CVE-2014-9865
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283007
|
7.8 |
HIGH
Local
|
google
|
android
|
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate ioctl calls, which allows attackers to gain privileges via a crafted a…
|
CWE-20
Improper Input Validation
|
CVE-2014-9864
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283008
|
7.8 |
HIGH
Local
|
google
|
android
|
Integer underflow in the diag driver in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges or obtain sensitive information via a …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2014-9863
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283009
|
9.8 |
CRITICAL
Network
|
google
|
android
|
Buffer overflow in CORE/SYS/legacy/src/utils/src/dot11f.c in the Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices allows remote attackers to execute arbitrary code via a c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9902
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283010
|
7.5 |
HIGH
Network
|
google
|
android
|
The Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices makes incorrect snprintf calls, which allows remote attackers to cause a denial of service (device hang or reboot) via…
|
CWE-284
Improper Access Control
|
CVE-2014-9901
|
2024-11-21 11:21 |
2016-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
