CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0801
https://notcve.org/view.php?id=CVE-2017-0801
A elevation of privilege vulnerability in the MediaTek libmtkomxvdec. Product: Android. Versions: Android kernel. Android ID: A-38447970. References: M-ALPS03337980. • http://www.securityfocus.com/bid/100652 https://source.android.com/security/bulletin/2017-09-01 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0795
https://notcve.org/view.php?id=CVE-2017-0795
A elevation of privilege vulnerability in the MediaTek accessory detector driver. Product: Android. Versions: Android kernel. Android ID: A-36198473. References: M-ALPS03361480. • http://www.securityfocus.com/bid/100652 https://source.android.com/security/bulletin/2017-09-01 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0804
https://notcve.org/view.php?id=CVE-2017-0804
A elevation of privilege vulnerability in the MediaTek mmc driver. Product: Android. Versions: Android kernel. Android ID: A-36274676. References: M-ALPS03361487. • http://www.securityfocus.com/bid/100652 https://source.android.com/security/bulletin/2017-09-01 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0794
https://notcve.org/view.php?id=CVE-2017-0794
A elevation of privilege vulnerability in the Upstream kernel scsi driver. Product: Android. Versions: Android kernel. Android ID: A-35644812. Existe una vulnerabilidad de elevación de privilegios en el driver scsi del kernel Upstream. • http://www.securityfocus.com/bid/100667 https://source.android.com/security/bulletin/2017-09-01 https://usn.ubuntu.com/3798-1 https://usn.ubuntu.com/3798-2 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0793
https://notcve.org/view.php?id=CVE-2017-0793
A information disclosure vulnerability in the N/A memory subsystem. Product: Android. Versions: Android kernel. Android ID: A-35764946. Existe una vulnerabilidad de revelación de información en el subsistema de memoria N/A. • http://www.securityfocus.com/bid/100670 https://source.android.com/security/bulletin/2017-09-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •