CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2017-6874
https://notcve.org/view.php?id=CVE-2017-6874
14 Mar 2017 — Race condition in kernel/ucount.c in the Linux kernel through 4.10.2 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via crafted system calls that leverage certain decrement behavior that causes incorrect interaction between put_ucounts and get_ucounts. Condición de carrera en kernel/ucount.c en el kernel de Linux hasta la versión 4.10.2 permite a usuarios locales provocar una denegación de servicio (uso después de liberación y caíd... • http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=040757f738e13caaa9c5078bca79aa97e11dde88 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0457
https://notcve.org/view.php?id=CVE-2017-0457
08 Mar 2017 — An elevation of privilege vulnerability in the Qualcomm ADSPRPC driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31695439. • http://www.securityfocus.com/bid/96803 •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8416
https://notcve.org/view.php?id=CVE-2016-8416
08 Mar 2017 — An information disclosure vulnerability in the Qualcomm video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-32510746. • http://www.securityfocus.com/bid/96734 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0507
https://notcve.org/view.php?id=CVE-2017-0507
08 Mar 2017 — An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31992382. • http://www.securityfocus.com/bid/96952 •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0523
https://notcve.org/view.php?id=CVE-2017-0523
08 Mar 2017 — An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: N/A. Android ID: A-32835279. • http://www.securityfocus.com/bid/96735 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0307
https://notcve.org/view.php?id=CVE-2017-0307
08 Mar 2017 — An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.18. Android ID: A-33177895. • http://nvidia.custhelp.com/app/answers/detail/a_id/4561 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0521
https://notcve.org/view.php?id=CVE-2017-0521
08 Mar 2017 — An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32919951. • http://www.securityfocus.com/bid/96951 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0518
https://notcve.org/view.php?id=CVE-2017-0518
08 Mar 2017 — An elevation of privilege vulnerability in the Qualcomm fingerprint sensor driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-32370896. • http://www.securityfocus.com/bid/96950 •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0455
https://notcve.org/view.php?id=CVE-2017-0455
08 Mar 2017 — An information disclosure vulnerability in the Qualcomm bootloader could help to enable a local malicious application to to execute arbitrary code within the context of the bootloader. This issue is rated as High because it is a general bypass for a bootloader level defense in depth or exploit mitigation technology. Product: Android. Versions: Kernel-3.18. Android ID: A-32370952. • http://www.securityfocus.com/bid/96812 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0524
https://notcve.org/view.php?id=CVE-2017-0524
08 Mar 2017 — An elevation of privilege vulnerability in the Synaptics touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-33002026. • http://www.securityfocus.com/bid/96808 •