CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0563 – Google Nexus 9 Build N4F27B Cypress SAR Firmware Injection
https://notcve.org/view.php?id=CVE-2017-0563
07 Apr 2017 — An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-32089409. • http://seclists.org/fulldisclosure/2017/May/19 • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0586
https://notcve.org/view.php?id=CVE-2017-0586
07 Apr 2017 — An information disclosure vulnerability in the Qualcomm sound driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-33649808. • http://www.securityfocus.com/bid/97357 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0572 – Broadcom dhd_pno_process_anqpo_result Memory Corruption
https://notcve.org/view.php?id=CVE-2017-0572
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10. Android ID: A-34198931. • http://www.securityfocus.com/bid/97331 •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 1CVE-2017-0564
https://notcve.org/view.php?id=CVE-2017-0564
07 Apr 2017 — An elevation of privilege vulnerability in the kernel ION subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34276203. • https://github.com/guoygang/CVE-2017-0564-ION-PoC •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0573
https://notcve.org/view.php?id=CVE-2017-0573
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34469904. • http://www.securityfocus.com/bid/97331 •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0454
https://notcve.org/view.php?id=CVE-2017-0454
07 Apr 2017 — An elevation of privilege vulnerability in the Qualcomm audio driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-33353700. • http://www.securityfocus.com/bid/97399 •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0585
https://notcve.org/view.php?id=CVE-2017-0585
07 Apr 2017 — An information disclosure vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32475556. • http://www.securityfocus.com/bid/97366 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0571 – Broadcom bcmdhd Memory Corruption
https://notcve.org/view.php?id=CVE-2017-0571
07 Apr 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-34203305. • http://www.securityfocus.com/bid/97331 •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0584
https://notcve.org/view.php?id=CVE-2017-0584
07 Apr 2017 — An information disclosure vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32074353. • http://www.securityfocus.com/bid/97363 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0325
https://notcve.org/view.php?id=CVE-2017-0325
05 Apr 2017 — An elevation of privilege vulnerability in the NVIDIA I2C HID driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel 3.10 and Kernel 3.18. Android ID: A-33040280. • http://nvidia.custhelp.com/app/answers/detail/a_id/4561 • CWE-787: Out-of-bounds Write •