CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2017-0842
https://notcve.org/view.php?id=CVE-2017-0842
An elevation of privilege vulnerability in the Android system (bluetooth). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37502513. Existe una vulnerabilidad de elevación de privilegios en el sistema de Android (bluetooth). • http://www.securityfocus.com/bid/101718 https://source.android.com/security/bulletin/2017-11-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2017-0859
https://notcve.org/view.php?id=CVE-2017-0859
Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-36075131. Existe una vulnerabilidad en el media framework de Android (n/a). • https://source.android.com/security/bulletin/pixel/2017-11-01 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0838
https://notcve.org/view.php?id=CVE-2017-0838
An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-63522818. Existe una vulnerabilidad de elevación de privilegios en el media framework de Android (libstagefright). • https://source.android.com/security/bulletin/pixel/2017-11-01 •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0836
https://notcve.org/view.php?id=CVE-2017-0836
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libhevc). • http://www.securityfocus.com/bid/101717 https://source.android.com/security/bulletin/2017-11-01 • CWE-129: Improper Validation of Array Index •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3164
https://notcve.org/view.php?id=CVE-2014-3164
cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write) via vectors related to binder passed lengths. cmds/servicemanager/service_manager.c en Android anterior al commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 permite que atacantes provoquen una denegación de servicio (desreferencia de puntero NULL o escritura fuera de límites) mediante vectores relacionados con longitudes pasadas por enlazadores. • http://www.securityfocus.com/bid/101506 https://android-review.googlesource.com/#/c/platform/frameworks/native/+/101104 https://android-review.googlesource.com/#/c/platform/frameworks/native/+/101104/1/cmds/servicemanager/service_manager.c https://plzdonthack.me https://sourceforge.net/p/android-x86/frameworks_native/ci/652c485467598240ecbb3a60516ad1140eddfab1 • CWE-476: NULL Pointer Dereference •