CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0840
https://notcve.org/view.php?id=CVE-2017-0840
An information disclosure vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62948670. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libstagefright). • http://www.securityfocus.com/bid/101717 https://source.android.com/security/bulletin/2017-11-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0839
https://notcve.org/view.php?id=CVE-2017-0839
An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64478003. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libeffects). • http://www.securityfocus.com/bid/101717 https://source.android.com/security/bulletin/2017-11-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0836
https://notcve.org/view.php?id=CVE-2017-0836
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libhevc). • http://www.securityfocus.com/bid/101717 https://source.android.com/security/bulletin/2017-11-01 • CWE-129: Improper Validation of Array Index •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0841
https://notcve.org/view.php?id=CVE-2017-0841
A remote code execution vulnerability in the Android system (libutils). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026. Existe una vulnerabilidad de ejecución remota de código en el sistema Android (libutils). • http://www.securityfocus.com/bid/101718 https://source.android.com/security/bulletin/2017-11-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-3164
https://notcve.org/view.php?id=CVE-2014-3164
cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write) via vectors related to binder passed lengths. cmds/servicemanager/service_manager.c en Android anterior al commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 permite que atacantes provoquen una denegación de servicio (desreferencia de puntero NULL o escritura fuera de límites) mediante vectores relacionados con longitudes pasadas por enlazadores. • http://www.securityfocus.com/bid/101506 https://android-review.googlesource.com/#/c/platform/frameworks/native/+/101104 https://android-review.googlesource.com/#/c/platform/frameworks/native/+/101104/1/cmds/servicemanager/service_manager.c https://plzdonthack.me https://sourceforge.net/p/android-x86/frameworks_native/ci/652c485467598240ecbb3a60516ad1140eddfab1 • CWE-476: NULL Pointer Dereference •