CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0568 – Broadcom wl_run_escan Heap Overflow
https://notcve.org/view.php?id=CVE-2017-0568
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34197514. • http://www.securityfocus.com/bid/97331 •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0584
https://notcve.org/view.php?id=CVE-2017-0584
07 Apr 2017 — An information disclosure vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32074353. • http://www.securityfocus.com/bid/97363 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0567
https://notcve.org/view.php?id=CVE-2017-0567
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32125310. • http://www.securityfocus.com/bid/97331 •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0581
https://notcve.org/view.php?id=CVE-2017-0581
07 Apr 2017 — An elevation of privilege vulnerability in the Synaptics Touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-34614485. • http://www.securityfocus.com/bid/97335 •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 2CVE-2017-0569 – Broadcom Wi-Fi SoC - 'dhd_handle_swc_evt' Heap Overflow
https://notcve.org/view.php?id=CVE-2017-0569
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34198729. • https://packetstorm.news/files/id/141955 • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0576
https://notcve.org/view.php?id=CVE-2017-0576
07 Apr 2017 — An elevation of privilege vulnerability in the Qualcomm crypto engine driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-33544431. • http://www.securityfocus.com/bid/97395 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0582 – Google Nexus 9 SensorHub Firmware Downgrade
https://notcve.org/view.php?id=CVE-2017-0582
07 Apr 2017 — An elevation of privilege vulnerability in the HTC OEM fastboot command could enable a local malicious application to execute arbitrary code within the context of the sensor hub. This issue is rated as Moderate because it first requires exploitation of separate vulnerabilities. Product: Android. Versions: Kernel-3.10. Android ID: A-33178836. • http://www.securityfocus.com/bid/97356 •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 1CVE-2017-0564
https://notcve.org/view.php?id=CVE-2017-0564
07 Apr 2017 — An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34276203. • https://github.com/guoygang/CVE-2017-0564-ION-PoC •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0563 – Google Nexus 9 Build N4F27B Cypress SAR Firmware Injection
https://notcve.org/view.php?id=CVE-2017-0563
07 Apr 2017 — An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-32089409. • http://seclists.org/fulldisclosure/2017/May/19 • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0571 – Broadcom bcmdhd Memory Corruption
https://notcve.org/view.php?id=CVE-2017-0571
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34203305. • http://www.securityfocus.com/bid/97331 •