CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-6246
https://notcve.org/view.php?id=CVE-2018-6246
10 May 2018 — In Android before the 2018-05-05 security patch level, NVIDIA Widevine Trustlet contains a vulnerability in Widevine TA where the software reads data past the end, or before the beginning, of the intended buffer, which may lead to Information Disclosure. This issue is rated as moderate. Android: A-69383916. Reference: N-CVE-2018-6246. En Android antes del nivel de seguridad del 2018-05-05, NVIDIA Widevine Trustlet contiene una vulnerabilidad en Widevine TA en la que el software lee datos más allá del final,... • https://source.android.com/security/bulletin/pixel/2018-05-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2017-0845
https://notcve.org/view.php?id=CVE-2017-0845
16 Nov 2017 — A denial of service vulnerability in the Android framework (syncstorageengine). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35028827. Existe una vulnerabilidad de denegación de servicio en el framework de Android (syncstorageengine). • https://source.android.com/security/bulletin/pixel/2017-11-01 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 5.3EPSS: 0%CPEs: 9EXPL: 0CVE-2017-0851
https://notcve.org/view.php?id=CVE-2017-0851
16 Nov 2017 — An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-35430570. Existe una vulnerabilidad de revelación de información en el media framework de Android (libhevc). • https://source.android.com/security/bulletin/pixel/2017-11-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 2%CPEs: 8EXPL: 1CVE-2017-0807
https://notcve.org/view.php?id=CVE-2017-0807
03 Oct 2017 — An elevation of privilege vulnerability in the Android framework (ui framework). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35056974. Existe una vulnerabilidad de elevación de privilegios en el framework de Android (ui framework). • https://github.com/kpatsakis/PoC_CVE-2017-0807 •
CVSS: 9.3EPSS: 0%CPEs: 30EXPL: 0CVE-2017-0809
https://notcve.org/view.php?id=CVE-2017-0809
03 Oct 2017 — A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62673128. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libstagefright). • http://www.securityfocus.com/bid/101088 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 13EXPL: 0CVE-2017-0811
https://notcve.org/view.php?id=CVE-2017-0811
03 Oct 2017 — A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37930177. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libhevc). • http://www.securityfocus.com/bid/101088 •
CVSS: 7.8EPSS: 0%CPEs: 30EXPL: 0CVE-2017-0814
https://notcve.org/view.php?id=CVE-2017-0814
03 Oct 2017 — An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62800140. Existe una vulnerabilidad de divulgación de información en el media framework de Android (n/a). • http://www.securityfocus.com/bid/101151 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 30EXPL: 0CVE-2017-0815
https://notcve.org/view.php?id=CVE-2017-0815
03 Oct 2017 — An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63526567. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libeffects). • http://www.securityfocus.com/bid/101088 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 30EXPL: 0CVE-2017-0816
https://notcve.org/view.php?id=CVE-2017-0816
03 Oct 2017 — An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63662938. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libeffects). • http://www.securityfocus.com/bid/101088 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 30EXPL: 0CVE-2017-0817
https://notcve.org/view.php?id=CVE-2017-0817
03 Oct 2017 — An information disclosure vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63522430. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libstagefright). • http://www.securityfocus.com/bid/101151 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •