CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-13259
https://notcve.org/view.php?id=CVE-2017-13259
04 Apr 2018 — In functionality implemented in sdp_discovery.cc, there are possible out of bounds reads due to missing bounds checks. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • http://www.securityfocus.com/bid/103253 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-13263
https://notcve.org/view.php?id=CVE-2017-13263
04 Apr 2018 — A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 8.0, 8.1. Android ID: A-69383160. Vulnerabilidad de elevación de privilegios en el framework de Android. • https://source.android.com/security/bulletin/pixel/2018-03-01 •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13264
https://notcve.org/view.php?id=CVE-2017-13264
04 Apr 2018 — A other vulnerability in the Android media framework (Avcdec). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-70294343. Vulnerabilidad no especificada en el media framework de Android (Avcdec). • https://source.android.com/security/bulletin/pixel/2018-03-01 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-13265
https://notcve.org/view.php?id=CVE-2017-13265
04 Apr 2018 — A elevation of privilege vulnerability in the Android system (OTA updates). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-36232423. Vulnerabilidad de elevación de privilegios en el sistema de Android (actualizaciones OTA). • https://source.android.com/security/bulletin/pixel/2018-03-01 •
CVSS: 10.0EPSS: 1%CPEs: 8EXPL: 0CVE-2017-13266
https://notcve.org/view.php?id=CVE-2017-13266
04 Apr 2018 — In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • http://www.securityfocus.com/bid/103253 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-13268
https://notcve.org/view.php?id=CVE-2017-13268
04 Apr 2018 — A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-67058064. Existe una vulnerabilidad de divulgación de información en el sistema de Android (bluetooth). • https://source.android.com/security/bulletin/pixel/2018-03-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-13269
https://notcve.org/view.php?id=CVE-2017-13269
04 Apr 2018 — A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68818034. Existe una vulnerabilidad de divulgación de información en el sistema de Android (bluetooth). • https://source.android.com/security/bulletin/pixel/2018-03-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2017-13272
https://notcve.org/view.php?id=CVE-2017-13272
04 Apr 2018 — In alarm_ready_generic of alarm.cc, there is a possible out of bounds write due to a use after free. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • http://www.securityfocus.com/bid/103253 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 3%CPEs: 7EXPL: 0CVE-2017-13267
https://notcve.org/view.php?id=CVE-2017-13267
04 Apr 2018 — In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://source.android.com/security/bulletin/2018-04-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-13275
https://notcve.org/view.php?id=CVE-2017-13275
04 Apr 2018 — In getVSCoverage of CmapCoverage.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 8.0, 8.1. • https://source.android.com/security/bulletin/2018-04-01 • CWE-125: Out-of-bounds Read •