CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3854
https://notcve.org/view.php?id=CVE-2016-3854
06 Aug 2016 — drivers/media/video/msm/msm_mctl_buf.c in the Qualcomm components in Android before 2016-08-05 does not validate the image mode, which allows attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted application, aka Qualcomm internal bug CR897326. drivers/media/video/msm/msm_mctl_buf.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-08-05 no valida el modo de imagen, lo que permite a atacantes provocar una denegación... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3855
https://notcve.org/view.php?id=CVE-2016-3855
06 Aug 2016 — drivers/thermal/supply_lm_core.c in the Qualcomm components in Android before 2016-08-05 does not validate a certain count parameter, which allows attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted application, aka Qualcomm internal bug CR990824. drivers/thermal/supply_lm_core.c en los componentes de Qualcomm en Android en versiones anteriores a 2016-08-05 no valida un cierto parámetro de recuento, lo que permite a atacantes provocar u... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3856
https://notcve.org/view.php?id=CVE-2016-3856
06 Aug 2016 — netd in Android before 2016-08-05 mishandles tethering and stdio streams, which allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted application, aka Qualcomm internal bug CR959631. netd en Android en versiones anteriores a 2016-08-05 no maneja adecuadamente corrientes tethering y stdio, lo que permite a atacantes provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de una aplicación manipulada, también conocido como ... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-19: Data Processing Errors •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3842
https://notcve.org/view.php?id=CVE-2016-3842
05 Aug 2016 — The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28377352 and Qualcomm internal bug CR1002974. El controlador GPU Qualcomm en Android en versiones anteriores a 2016-08-05 en dispositivos Nexus 5X, 6 y 6P permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno de Android 28377352 y error interno de Qualcomm CR1002974. • http://source.android.com/security/bulletin/2016-08-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2016-3833
https://notcve.org/view.php?id=CVE-2016-3833
05 Aug 2016 — The Shell component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 does not properly manage the MANAGE_USERS and CREATE_USERS permissions, which allows attackers to bypass intended access restrictions via a crafted application, aka internal bug 29189712. El componente Shell en Android 5.0.x en versiones anteriores a 5.0.2, 5.1.x en versiones anteriores a 5.1.1 y 6.x en versiones anteriores a 2016-08-01 no maneja adecuadamente los permisos MANAGE_USERS y CREATE_USERS, lo que per... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3845
https://notcve.org/view.php?id=CVE-2016-3845
05 Aug 2016 — The video driver in the kernel in Android before 2016-08-05 on Nexus 5 devices allows attackers to gain privileges via a crafted application, aka internal bug 28399876. El controlador de video en el kernel en Android en versiones anteriores a 2016-08-05 en dispositivos Nexus 5 permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 28399876. • http://source.android.com/security/bulletin/2016-08-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3844
https://notcve.org/view.php?id=CVE-2016-3844
05 Aug 2016 — mediaserver in Android before 2016-08-05 on Nexus 9 and Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28299517. mediaserver en Android en versiones anteriores a 2016-08-05 en dispositivos Nexus 9 y Pixel C permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 28299517. • http://source.android.com/security/bulletin/2016-08-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9901
https://notcve.org/view.php?id=CVE-2014-9901
05 Aug 2016 — The Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices makes incorrect snprintf calls, which allows remote attackers to cause a denial of service (device hang or reboot) via crafted frames, aka Android internal bug 28670333 and Qualcomm internal bug CR548711. El controlador Wi-Fi Qualcomm en Android en versiones anteriores a 2016-08-05 en dispositivos Nexus 7 (2013) hace llamadas snprintf incorrectas, lo que permite a atacantes remotos provocar una denegación de servicio (colgado d... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2016-2497
https://notcve.org/view.php?id=CVE-2016-2497
05 Aug 2016 — services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to increase intent-filter priority via a crafted application, aka internal bug 27450489. services/core/java/com/android/server/pm/PackageManagerService.java en el marco de referencia APIs en Android 4.x en versiones anteriores a 4.4.4, 5.0.x en versiones anteriores a 5.0.2, 5.1.x en versiones anteriores a 5.1... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-2504
https://notcve.org/view.php?id=CVE-2016-2504
05 Aug 2016 — The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026365 and Qualcomm internal bug CR1002974. El controlador GPU Qualcomm en Android en versiones anteriores a 2016-08-05 en dispositivos Nexus 5, 5X, 6, 6P y 7 (2013) permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno de Android 28026365 y error interno de Qualc... • http://source.android.com/security/bulletin/2016-08-01.html • CWE-264: Permissions, Privileges, and Access Controls •