CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-13202
https://notcve.org/view.php?id=CVE-2017-13202
12 Jan 2018 — An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-67647856. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libeffects). • http://www.securityfocus.com/bid/102521 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2017-13194 – Ubuntu Security Notice USN-4199-1
https://notcve.org/view.php?id=CVE-2017-13194
12 Jan 2018 — A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201. Existe una vulnerabilidad en el framework media de Android (libvpx) relacionado con un ancho de frame extraño. • https://android.googlesource.com/platform/external/libvpx/+/55cd1dd7c8d0a3de907d22e0f12718733f4e41d9 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13212
https://notcve.org/view.php?id=CVE-2017-13212
12 Jan 2018 — An elevation of privilege vulnerability in the Android system (systemui). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62187985. Existe una vulnerabilidad de elevación de privilegios en el sistema de Android (systemui). • https://source.android.com/security/bulletin/pixel/2018-01-01 •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 1CVE-2017-13208
https://notcve.org/view.php?id=CVE-2017-13208
12 Jan 2018 — In receive_packet of libnetutils/packet.c, there is a possible out-of-bounds write due to a missing bounds check on the DHCP response. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://github.com/idanshechter/CVE-2017-13208-Scanner • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13149
https://notcve.org/view.php?id=CVE-2017-13149
06 Dec 2017 — An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65719872. Existe una vulnerabilidad de divulgación de información en el framework multimedia de Android (n/a). • https://source.android.com/security/bulletin/pixel/2017-12-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13157
https://notcve.org/view.php?id=CVE-2017-13157
06 Dec 2017 — An information disclosure vulnerability in the Android system (activitymanagerservice). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-32990341. Existe una vulnerabilidad de divulgación de información en el sistema de Android (activitymanagerservice). • http://www.securityfocus.com/bid/102109 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13152
https://notcve.org/view.php?id=CVE-2017-13152
06 Dec 2017 — An information disclosure vulnerability in the Android media framework (libmedia drm). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-62872384. Existe una vulnerabilidad de divulgación de información en el framework multimedia de Android (libmedia drm). • https://source.android.com/security/bulletin/pixel/2017-12-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13158
https://notcve.org/view.php?id=CVE-2017-13158
06 Dec 2017 — An information disclosure vulnerability in the Android system (activitymanagerservice). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-32879915. Existe una vulnerabilidad de divulgación de información en el sistema de Android (activitymanagerservice). • http://www.securityfocus.com/bid/102109 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13154
https://notcve.org/view.php?id=CVE-2017-13154
06 Dec 2017 — An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-63666573. Existe una vulnerabilidad de elevación de privilegios en el framework multimedia de Android (libstagefright). • https://source.android.com/security/bulletin/pixel/2017-12-01 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-0837
https://notcve.org/view.php?id=CVE-2017-0837
06 Dec 2017 — An elevation of privilege vulnerability in the Android media framework (libaudiopolicymanager). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64340921. Existe una vulnerabilidad de elevación de privilegios en el framework multimedia de Android (libaudiopolicymanager). • http://www.securityfocus.com/bid/102126 •