CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 7CVE-2017-13156 – Android Janus - APK Signature Bypass
https://notcve.org/view.php?id=CVE-2017-13156
06 Dec 2017 — An elevation of privilege vulnerability in the Android system (art). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64211847. Existe una vulnerabilidad de elevación de privilegios en el sistema de Android (art). • https://packetstorm.news/files/id/155189 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0836
https://notcve.org/view.php?id=CVE-2017-0836
16 Nov 2017 — A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libhevc). • http://www.securityfocus.com/bid/101717 • CWE-129: Improper Validation of Array Index •
CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0841
https://notcve.org/view.php?id=CVE-2017-0841
16 Nov 2017 — A remote code execution vulnerability in the Android system (libutils). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026. Existe una vulnerabilidad de ejecución remota de código en el sistema Android (libutils). • http://www.securityfocus.com/bid/101718 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 0CVE-2017-0834
https://notcve.org/view.php?id=CVE-2017-0834
16 Nov 2017 — A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63125953. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libmpeg2). • http://www.securityfocus.com/bid/101717 • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 9EXPL: 0CVE-2017-0851
https://notcve.org/view.php?id=CVE-2017-0851
16 Nov 2017 — An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-35430570. Existe una vulnerabilidad de revelación de información en el media framework de Android (libhevc). • https://source.android.com/security/bulletin/pixel/2017-11-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 0CVE-2017-0832
https://notcve.org/view.php?id=CVE-2017-0832
16 Nov 2017 — A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62887820. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (libmpeg2). • http://www.securityfocus.com/bid/101717 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2017-0842
https://notcve.org/view.php?id=CVE-2017-0842
16 Nov 2017 — An elevation of privilege vulnerability in the Android system (bluetooth). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37502513. Existe una vulnerabilidad de elevación de privilegios en el sistema de Android (bluetooth). • http://www.securityfocus.com/bid/101718 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0847
https://notcve.org/view.php?id=CVE-2017-0847
16 Nov 2017 — An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product: Android. Versions: 8.0. Android ID: A-65540999. Existe una vulnerabilidad de elevación de privilegios en el media framework de Android (mediaanalytics). • https://source.android.com/security/bulletin/pixel/2017-11-01 • CWE-276: Incorrect Default Permissions •
CVSS: 5.3EPSS: 0%CPEs: 8EXPL: 0CVE-2017-0848
https://notcve.org/view.php?id=CVE-2017-0848
16 Nov 2017 — An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64477217. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libeffects). • https://source.android.com/security/bulletin/pixel/2017-11-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 0CVE-2017-0849
https://notcve.org/view.php?id=CVE-2017-0849
16 Nov 2017 — An information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62688399. Existe una vulnerabilidad de divulgación de información en el media framework de Android (libavc). • https://source.android.com/security/bulletin/pixel/2017-11-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •