CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9800
https://notcve.org/view.php?id=CVE-2014-9800
11 Jul 2016 — Integer overflow in lib/heap/heap.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28822150 and Qualcomm internal bug CR692478. Desbordamiento de entero en lib/heap/heap.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido c... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-189: Numeric Errors CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9802
https://notcve.org/view.php?id=CVE-2014-9802
11 Jul 2016 — Multiple integer overflows in lib/libfdt/fdt.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to gain privileges via a crafted application, aka Android internal bug 28821965 and Qualcomm internal bug CR705108. Múltiples desbordamientos de entero en lib/libfdt/fdt.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) permiten a atacantes obtener privilegios a través de una aplicación manipul... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3767
https://notcve.org/view.php?id=CVE-2016-3767
11 Jul 2016 — The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28169363 and MediaTek internal bug ALPS02689526. El controlador Wi-Fi de MediaTek en Android en versiones anteriores a 2016-07-05 en dispositivos Android One permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno de Android 28169363 y error interno de MediaTek ALPS02689526. • http://source.android.com/security/bulletin/2016-07-01.html • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-2505
https://notcve.org/view.php?id=CVE-2016-2505
11 Jul 2016 — mpeg2ts/ATSParser.cpp in libstagefright in mediaserver in Android 6.x before 2016-07-01 does not validate a certain section length, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 28333006. mpeg2ts/ATSParser.cpp en libstagefright en mediaserver en Android 6.x en versiones anteriores a 2016-07-01 no valida una determinada longitud de sección, lo que permite a atacantes remotos ejecutar un código arbitrario o p... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9798
https://notcve.org/view.php?id=CVE-2014-9798
11 Jul 2016 — platform/msm_shared/dev_tree.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 devices does not check the relationship between tags addresses and aboot addresses, which allows attackers to cause a denial of service (OS outage) via a crafted application, aka Android internal bug 28821448 and Qualcomm internal bug CR681965. platform/msm_shared/dev_tree.c en el gestor de arranque de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 no comprueba la relación entr... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-284: Improper Access Control •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3804
https://notcve.org/view.php?id=CVE-2016-3804
11 Jul 2016 — The MediaTek power management driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28332766 and MediaTek internal bug ALPS02694410. El controlador de administración de potencia de MediaTek en Android en versiones anteriores a 2016-07-05 en dispositivos Android One permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno de Android 28332766 y error interno de... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9779
https://notcve.org/view.php?id=CVE-2014-9779
11 Jul 2016 — arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allows attackers to obtain sensitive information from kernel memory via a crafted offset, aka Android internal bug 28598347 and Qualcomm internal bug CR548679. arch/arm/mach-msm/qdsp6v2/msm_audio_ion.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 permite a atacantes obtener información sensible de la memoria del kernel a través de un d... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2015-8891
https://notcve.org/view.php?id=CVE-2015-8891
11 Jul 2016 — Multiple integer overflows in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to bypass intended access restrictions via a crafted image, aka Android internal bug 28842418 and Qualcomm internal bug CR813930. Multiples desbordamientos de entero en app/aboot/aboot.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) permiten a atacantes eludir restricciones destinadas al acc... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9799
https://notcve.org/view.php?id=CVE-2014-9799
11 Jul 2016 — The makefile in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices omits the -fno-strict-overflow option to gcc, which might allow attackers to gain privileges via a crafted application that leverages incorrect compiler optimization of an integer-overflow protection mechanism, aka Android internal bug 28821731 and Qualcomm internal bug CR691916. El makefile en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 5 y 7 (2013) omit... • http://source.android.com/security/bulletin/2016-07-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-7457
https://notcve.org/view.php?id=CVE-2013-7457
11 Jul 2016 — Unspecified vulnerability in the Qualcomm components in Android before 2016-07-05 allows attackers to gain privileges via a crafted application. Vulnerabilidad no especificada en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 permite a atacantes obtener privilegios a través de una aplicación manipulada. • http://source.android.com/security/bulletin/2016-07-01.html •