CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-6246
https://notcve.org/view.php?id=CVE-2018-6246
10 May 2018 — In Android before the 2018-05-05 security patch level, NVIDIA Widevine Trustlet contains a vulnerability in Widevine TA where the software reads data past the end, or before the beginning, of the intended buffer, which may lead to Information Disclosure. This issue is rated as moderate. Android: A-69383916. Reference: N-CVE-2018-6246. En Android antes del nivel de seguridad del 2018-05-05, NVIDIA Widevine Trustlet contiene una vulnerabilidad en Widevine TA en la que el software lee datos más allá del final,... • https://source.android.com/security/bulletin/pixel/2018-05-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2014-0900
https://notcve.org/view.php?id=CVE-2014-0900
20 Apr 2018 — The Device Administrator code in Android before 4.4.1_r1 might allow attackers to spoof device administrators and consequently bypass MDM restrictions by leveraging failure to update the mAdminMap data structure. El código Device Administrator en Android, en versiones anteriores a la 4.4.1_r1, podría permitir que los atacantes suplanten administradores de dispositivo y, consecuentemente, omitan las restricciones MDM aprovechando el error a la hora de actualizar la estructura de datos mAdminMap. • https://securityintelligence.com/how-to-cheat-your-mdm-compliance-without-a-password • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3164
https://notcve.org/view.php?id=CVE-2014-3164
18 Oct 2017 — cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write) via vectors related to binder passed lengths. cmds/servicemanager/service_manager.c en Android anterior al commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 permite que atacantes provoquen una denegación de servicio (desreferencia de puntero NULL o escritura fuera de límites) mediante vectores relacionados con l... • http://www.securityfocus.com/bid/101506 • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0828
https://notcve.org/view.php?id=CVE-2017-0828
03 Oct 2017 — An elevation of privilege vulnerability in the Huawei bootloader. Product: Android. Versions: Android kernel. Android ID: A-34622855. Existe una vulnerabilidad de elevación de privilegios en el bootloader de Huawei. • https://source.android.com/security/bulletin/pixel/2017-10-01 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0829
https://notcve.org/view.php?id=CVE-2017-0829
03 Oct 2017 — An elevation of privilege vulnerability in the Motorola bootloader. Product: Android. Versions: Android kernel. Android ID: A-62345044. Existe una vulnerabilidad de elevación de privilegios en el bootloader de Motorola. • https://source.android.com/security/bulletin/pixel/2017-10-01 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0826
https://notcve.org/view.php?id=CVE-2017-0826
03 Oct 2017 — An elevation of privilege vulnerability in the HTC bootloader. Product: Android. Versions: Android kernel. Android ID: A-34949781. Existe una vulnerabilidad de elevación de privilegios en el bootloader de HTC. • https://source.android.com/security/bulletin/pixel/2017-10-01 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0825
https://notcve.org/view.php?id=CVE-2017-0825
03 Oct 2017 — An information disclosure vulnerability in the Broadcom wifi driver. Product: Android. Versions: Android kernel. Android ID: A-37305633. References: B-V2017063002. • https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0824
https://notcve.org/view.php?id=CVE-2017-0824
03 Oct 2017 — An elevation of privilege vulnerability in the Broadcom wifi driver. Product: Android. Versions: Android kernel. Android ID: A-37622847. References: B-V2017063001. • https://source.android.com/security/bulletin/pixel/2017-10-01 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0827
https://notcve.org/view.php?id=CVE-2017-0827
03 Oct 2017 — An elevation of privilege vulnerability in the MediaTek soc driver. Product: Android. Versions: Android kernel. Android ID: A-62539960. References: M-ALPS03353876, M-ALPS03353861, M-ALPS03353869, M-ALPS03353867, M-ALPS03353872. • http://www.securityfocus.com/bid/101120 •
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 1CVE-2015-1537
https://notcve.org/view.php?id=CVE-2015-1537
27 Sep 2017 — Integer overflow in IHDCP.cpp in the media_server component in Android allows remote attackers to execute arbitrary code via a crafted application. Un desbordamiento de enteros en el componente media_server en Android permite que los atacantes remotos ejecuten código arbitrario mediante una aplicación modificada. • http://www.securityfocus.com/bid/76670 • CWE-190: Integer Overflow or Wraparound •