CVSS: 7.1EPSS: 6%CPEs: 8EXPL: 0CVE-2017-0641
https://notcve.org/view.php?id=CVE-2017-0641
14 Jun 2017 — A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34360591. • http://www.securityfocus.com/bid/98868 • CWE-665: Improper Initialization •
CVSS: 7.1EPSS: 0%CPEs: 7EXPL: 0CVE-2017-0642
https://notcve.org/view.php?id=CVE-2017-0642
14 Jun 2017 — A remote denial of service vulnerability in libhevc in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34819017. • http://www.securityfocus.com/bid/98868 •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2017-0643
https://notcve.org/view.php?id=CVE-2017-0643
14 Jun 2017 — A remote denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-35645051. • http://www.securityfocus.com/bid/98868 •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2017-0644
https://notcve.org/view.php?id=CVE-2017-0644
14 Jun 2017 — A remote denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1. Android ID: A-35472997. • http://www.securityfocus.com/bid/98868 •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0646
https://notcve.org/view.php?id=CVE-2017-0646
14 Jun 2017 — An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate due to details specific to the vulnerability. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-33899337. • http://www.securityfocus.com/bid/98871 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2017-0647
https://notcve.org/view.php?id=CVE-2017-0647
14 Jun 2017 — An information disclosure vulnerability in libziparchive could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36392138. • http://www.securityfocus.com/bid/98877 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 1%CPEs: 8EXPL: 0CVE-2017-0663 – Ubuntu Security Notice USN-3424-2
https://notcve.org/view.php?id=CVE-2017-0663
14 Jun 2017 — A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses this library. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37104170. • http://www.debian.org/security/2017/dsa-3952 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10274
https://notcve.org/view.php?id=CVE-2016-10274
12 May 2017 — An elevation of privilege vulnerability in the MediaTek touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-30202412. • http://www.securityfocus.com/bid/98145 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10275
https://notcve.org/view.php?id=CVE-2016-10275
12 May 2017 — An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-34514954. • http://www.securityfocus.com/bid/98146 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10276
https://notcve.org/view.php?id=CVE-2016-10276
12 May 2017 — An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-32952839. • http://www.securityfocus.com/bid/98148 • CWE-264: Permissions, Privileges, and Access Controls •