|
265841
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a Use After Free condition can occur during positioning.
|
CWE-416
Use After Free
|
CVE-2017-11006
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265842
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a Use After Free condition can occur during a deinitialization path.
|
CWE-416
Use After Free
|
CVE-2017-11005
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265843
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, ImsService and the IQtiImsExt AIDL APIs are not subject to access control.
|
CWE-862
Missing Authorization
|
CVE-2017-11042
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265844
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the coresight-tmc driver, a simultaneous read and enable of the ETR device after cha…
|
CWE-416
Use After Free
|
CVE-2017-11033
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265845
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the VIDIOC_G_SDE_ROTATOR_FENCE ioctl command can be used to cause a Use After Free cond…
|
CWE-200
CWE-416
Information Exposure
Use After Free
|
CVE-2017-11031
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265846
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the HDMI video driver function hdmi_edid_sysfs_rda_res_info(), userspace can perform…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11030
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265847
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the fd allocated during the get_metadata was not closed even though the buffer allocate…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11019
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265848
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when memory allocation fails while creating a calibration block in create_cal_block sta…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2017-11016
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265849
|
9.8 |
CRITICAL
Network
|
princeton
|
ptw-wms1_firmware
|
Improper authentication issue in PTW-WMS1 firmware version 2.000.012 allows remote attackers to log in to the device with root privileges and conduct arbitrary operations via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2017-10903
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265850
|
9.8 |
CRITICAL
Network
|
princeton
|
ptw-wms1_firmware
|
PTW-WMS1 firmware version 2.000.012 allows remote attackers to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2017-10902
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
