CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9788
https://notcve.org/view.php?id=CVE-2014-9788
11 Jul 2016 — Multiple buffer overflows in the voice drivers in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28573112 and Qualcomm internal bug CR548872. Múltiples desbordamientos de buffer en los controladores de voz de los componentes Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 permiten a atacantes obtener privilegios a través de una aplicación manipulada, también conoci... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9789
https://notcve.org/view.php?id=CVE-2014-9789
11 Jul 2016 — The (1) alloc and (2) free APIs in arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices do not validate parameters, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28749392 and Qualcomm internal bug CR556425. Las APIs (1) alloc y (2) free en arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 no valida parám... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9793
https://notcve.org/view.php?id=CVE-2014-9793
11 Jul 2016 — platform/msm_shared/mmc.c in the Qualcomm components in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles the power-on write-protect feature, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28821253 and Qualcomm internal bug CR580567. platform/msm_shared/mmc.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 7 (2013) no maneja correctamente la característica de protección de escritura de encendido,... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-254: 7PK - Security Features •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9795
https://notcve.org/view.php?id=CVE-2014-9795
11 Jul 2016 — app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices does not properly check for an integer overflow, which allows attackers to bypass intended access restrictions via crafted start and size values, aka Android internal bug 28820720 and Qualcomm internal bug CR681957, a related issue to CVE-2014-4325. app/aboot/aboot.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 no comprueba correctamente para un desbordamient... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9796
https://notcve.org/view.php?id=CVE-2014-9796
11 Jul 2016 — app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate the page size in the kernel header, which allows attackers to bypass intended access restrictions via a crafted boot image, aka Android internal bug 28820722 and Qualcomm internal bug CR684756. app/aboot/aboot.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) no valida el tamaño de página en la cabecera del kernel, lo qu... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9798
https://notcve.org/view.php?id=CVE-2014-9798
11 Jul 2016 — platform/msm_shared/dev_tree.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 devices does not check the relationship between tags addresses and aboot addresses, which allows attackers to cause a denial of service (OS outage) via a crafted application, aka Android internal bug 28821448 and Qualcomm internal bug CR681965. platform/msm_shared/dev_tree.c en el gestor de arranque de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 no comprueba la relación entr... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-284: Improper Access Control •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9799
https://notcve.org/view.php?id=CVE-2014-9799
11 Jul 2016 — The makefile in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices omits the -fno-strict-overflow option to gcc, which might allow attackers to gain privileges via a crafted application that leverages incorrect compiler optimization of an integer-overflow protection mechanism, aka Android internal bug 28821731 and Qualcomm internal bug CR691916. El makefile en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) omit... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9800
https://notcve.org/view.php?id=CVE-2014-9800
11 Jul 2016 — Integer overflow in lib/heap/heap.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28822150 and Qualcomm internal bug CR692478. Desbordamiento de entero en lib/heap/heap.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido c... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-189: Numeric Errors CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9801
https://notcve.org/view.php?id=CVE-2014-9801
11 Jul 2016 — Multiple integer overflows in lib/libfdt/fdt_rw.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28822060 and Qualcomm internal bug CR705078. Múltiples desbordamientos de entero en lib/libfdt/fdt_rw.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 permite a atacantes obtener privilegios a través de una aplicación manipulada, también conoci... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9802
https://notcve.org/view.php?id=CVE-2014-9802
11 Jul 2016 — Multiple integer overflows in lib/libfdt/fdt.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28821965 and Qualcomm internal bug CR705108. Múltiples desbordamientos de entero en lib/libfdt/fdt.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) permiten a atacantes obtener privilegios a través de una aplicación manipul... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •