CVSS: 5.3EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13297
https://notcve.org/view.php?id=CVE-2017-13297
04 Apr 2018 — A information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-71766721. Existe una vulnerabilidad de revelación de información en el media framework de Android (libhevc). • https://source.android.com/security/bulletin/pixel/2018-04-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-13275
https://notcve.org/view.php?id=CVE-2017-13275
04 Apr 2018 — In getVSCoverage of CmapCoverage.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 8.0, 8.1. • https://source.android.com/security/bulletin/2018-04-01 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-13278
https://notcve.org/view.php?id=CVE-2017-13278
04 Apr 2018 — In MediaPlayerService::Client::notify of MediaPlayerService.cpp, there is a possible use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://source.android.com/security/bulletin/2018-04-01 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 16%CPEs: 8EXPL: 4CVE-2017-13260 – Android Bluetooth - BNEP BNEP_SETUP_CONNECTION_REQUEST_MSG Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2017-13260
23 Mar 2018 — In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://packetstorm.news/files/id/146883 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 2%CPEs: 8EXPL: 4CVE-2017-13258 – Android Bluetooth - BNEP BNEP_SETUP_CONNECTION_REQUEST_MSG Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2017-13258
23 Mar 2018 — In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://packetstorm.news/files/id/146883 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 9%CPEs: 8EXPL: 4CVE-2017-13262 – Android Bluetooth - BNEP BNEP_SETUP_CONNECTION_REQUEST_MSG Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2017-13262
23 Mar 2018 — In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing length decrement operation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://packetstorm.news/files/id/146883 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 16%CPEs: 8EXPL: 4CVE-2017-13261 – Android Bluetooth - BNEP BNEP_SETUP_CONNECTION_REQUEST_MSG Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2017-13261
23 Mar 2018 — In bnep_process_control_packet of bnep_utils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • https://packetstorm.news/files/id/146883 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 3CVE-2017-13253 – Android DRM Services - Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-13253
15 Mar 2018 — In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 8.0, 8.1. • https://packetstorm.news/files/id/146822 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2017-13232
https://notcve.org/view.php?id=CVE-2017-13232
12 Feb 2018 — In audioserver, there is an out-of-bounds write due to a log statement using %s with an array that may not be NULL terminated. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • http://www.securityfocus.com/bid/102976 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-13230
https://notcve.org/view.php?id=CVE-2017-13230
12 Feb 2018 — In hevc codec, there is an out-of-bounds write due to an incorrect bounds check with the i2_pic_width_in_luma_samples value. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. • http://www.securityfocus.com/bid/102976 • CWE-787: Out-of-bounds Write •