CVSS: 6.5EPSS: 9%CPEs: 30EXPL: 10CVE-2017-0785 – Android Bluetooth - 'Blueborne' Information Leak
https://notcve.org/view.php?id=CVE-2017-0785
14 Sep 2017 — A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146698. Existe una vulnerabilidad de divulgación de información en el sistema de Android (bluetooth). • https://www.exploit-db.com/exploits/44555 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 48%CPEs: 30EXPL: 9CVE-2017-0781 – LineageOS 14.1 Blueborne - Remote Code Execution
https://notcve.org/view.php?id=CVE-2017-0781
14 Sep 2017 — A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146105. Existe una vulnerabilidad de ejecución remota de código en el sistema Android (bluetooth). • https://packetstorm.news/files/id/147076 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0756
https://notcve.org/view.php?id=CVE-2017-0756
08 Sep 2017 — A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34621073. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libstagefright). • http://www.securityfocus.com/bid/100649 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0800
https://notcve.org/view.php?id=CVE-2017-0800
08 Sep 2017 — A elevation of privilege vulnerability in the MediaTek teei. Product: Android. Versions: Android kernel. Android ID: A-37683975. References: M-ALPS03302988. • http://www.securityfocus.com/bid/100652 •
CVSS: 5.5EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0777
https://notcve.org/view.php?id=CVE-2017-0777
08 Sep 2017 — A information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-38342499. Existe una vulnerabilidad de revelación de información en el media framework de Android (n/a). • http://www.securityfocus.com/bid/100649 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0752
https://notcve.org/view.php?id=CVE-2017-0752
08 Sep 2017 — A elevation of privilege vulnerability in the Android framework (windowmanager). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-62196835. Existe una vulnerabilidad de elevación de privilegios en el framework de Android (windowmanager). • http://www.securityfocus.com/bid/100673 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0794 – Ubuntu Security Notice USN-3798-2
https://notcve.org/view.php?id=CVE-2017-0794
08 Sep 2017 — A elevation of privilege vulnerability in the Upstream kernel scsi driver. Product: Android. Versions: Android kernel. Android ID: A-35644812. Existe una vulnerabilidad de elevación de privilegios en el driver scsi del kernel Upstream. • http://www.securityfocus.com/bid/100667 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0795
https://notcve.org/view.php?id=CVE-2017-0795
08 Sep 2017 — A elevation of privilege vulnerability in the MediaTek accessory detector driver. Product: Android. Versions: Android kernel. Android ID: A-36198473. References: M-ALPS03361480. • http://www.securityfocus.com/bid/100652 •
CVSS: 9.3EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0766
https://notcve.org/view.php?id=CVE-2017-0766
08 Sep 2017 — A remote code execution vulnerability in the Android media framework (libjhead). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37776688. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libjhead). • http://www.securityfocus.com/bid/100649 •
CVSS: 9.3EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0767
https://notcve.org/view.php?id=CVE-2017-0767
08 Sep 2017 — A elevation of privilege vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37536407. Existe una vulnerabilidad de elevación de privilegios en el media framework de Android (libeffects). • http://www.securityfocus.com/bid/100649 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •