CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2017-0859
https://notcve.org/view.php?id=CVE-2017-0859
Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-36075131. Existe una vulnerabilidad en el media framework de Android (n/a). • https://source.android.com/security/bulletin/pixel/2017-11-01 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0838
https://notcve.org/view.php?id=CVE-2017-0838
An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-63522818. Existe una vulnerabilidad de elevación de privilegios en el media framework de Android (libstagefright). • https://source.android.com/security/bulletin/pixel/2017-11-01 •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0836
https://notcve.org/view.php?id=CVE-2017-0836
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libhevc). • http://www.securityfocus.com/bid/101717 https://source.android.com/security/bulletin/2017-11-01 • CWE-129: Improper Validation of Array Index •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3164
https://notcve.org/view.php?id=CVE-2014-3164
cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write) via vectors related to binder passed lengths. cmds/servicemanager/service_manager.c en Android anterior al commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 permite que atacantes provoquen una denegación de servicio (desreferencia de puntero NULL o escritura fuera de límites) mediante vectores relacionados con longitudes pasadas por enlazadores. • http://www.securityfocus.com/bid/101506 https://android-review.googlesource.com/#/c/platform/frameworks/native/+/101104 https://android-review.googlesource.com/#/c/platform/frameworks/native/+/101104/1/cmds/servicemanager/service_manager.c https://plzdonthack.me https://sourceforge.net/p/android-x86/frameworks_native/ci/652c485467598240ecbb3a60516ad1140eddfab1 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-9686
https://notcve.org/view.php?id=CVE-2017-9686
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possible double free/use after free in the SPS driver when debugfs logging is used. En Android for MSM, Firefox OS for MSM, QRD Android con todas las versiones de Android desde CAF usando el kernel de Linux, hay una posible doble liberación (double free)/uso de memoria previamente liberada en el controlador SPS cuando se usa el registro debugfs. • http://www.securityfocus.com/bid/101160 https://source.android.com/security/bulletin/pixel/2017-10-01 • CWE-415: Double Free •