CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2019-2010
https://notcve.org/view.php?id=CVE-2019-2010
19 Jun 2019 — In phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-118152591 En phNxpNciHal_process_ext_rsp of phNxpNciHal_ext.cc, existe una posible escritura fuera de límite debido a una falta de... • https://source.android.com/security/bulletin/2019-03-01 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2019-2009
https://notcve.org/view.php?id=CVE-2019-2009
19 Jun 2019 — In l2c_lcc_proc_pdu of l2c_fcr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-120665616 En l2c_lcc_proc_pdu of l2c_fcr.cc, existe una posible escritura fuera de límites debido a una falta de comprobación de límites. Est... • https://source.android.com/security/bulletin/2019-03-01 • CWE-787: Out-of-bounds Write •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2019-2008
https://notcve.org/view.php?id=CVE-2019-2008
19 Jun 2019 — In createEffect of AudioFlinger.cpp, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9Android ID: A-122309228 En createEffect of AudioFlinger.cpp, existe una posible corrupción de memoria debido a una condición de carrera. Esto podría llevar a una escalada local de privilegios sin necesidad de pri... • https://source.android.com/security/bulletin/2019-03-01 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2019-2007
https://notcve.org/view.php?id=CVE-2019-2007
19 Jun 2019 — In getReadIndex and getWriteIndex of FifoControllerBase.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the audio server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9Android ID: A-120789744 En getReadIndex and getWriteIndex of FifoControllerBase.cpp, hay una posible escritura fuera de limites debido a un desbordamiento de enteros. Esto... • https://source.android.com/security/bulletin/2019-03-01 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2019-2006
https://notcve.org/view.php?id=CVE-2019-2006
19 Jun 2019 — In serviceDied of HalDeathHandlerHidl.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege in the audio server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9Android ID: A-116665972 En serviceDied of HalDeathHandlerHidl.cpp, existe una posible corrupción de memoria debido a un acceso después de liberarla. Esto podría llevar a una escalada local de privilegios en... • https://source.android.com/security/bulletin/2019-03-01 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 1%CPEs: 6EXPL: 0CVE-2019-1990
https://notcve.org/view.php?id=CVE-2019-1990
19 Jun 2019 — In ihevcd_fmt_conv_420sp_to_420p of ihevcd_fmt_conv.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-118453553 En ihevcd_fmt_conv_420sp_to_420p of ihevcd_fmt_conv.c, existe una posible escritura fuera de límites debido a una falta de comprob... • https://source.android.com/security/bulletin/2019-03-01 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 1%CPEs: 6EXPL: 0CVE-2019-1989
https://notcve.org/view.php?id=CVE-2019-1989
19 Jun 2019 — In ih264d_fmt_conv_420sp_to_420p of ih264d_format_conv.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-118399205 En ih264d_fmt_conv_420sp_to_420p of ih264d_format_conv.c, existe una posible escritura fuera de límites debido a una falta de c... • https://source.android.com/security/bulletin/2019-03-01 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2019-2005
https://notcve.org/view.php?id=CVE-2019-2005
19 Jun 2019 — In onPermissionGrantResult of GrantPermissionsActivity.java, there is a possible incorrectly granted permission due to a missing permission check. This could lead to local escalation of privilege on a locked device with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9Android ID: A-68777217 En onPermissionGrantResult de GrantPermissionsActivity.java, hay un posible permiso otorgado incorrectamente debido a una v... • https://source.android.com/security/bulletin/2019-03-01 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2019-2004
https://notcve.org/view.php?id=CVE-2019-2004
19 Jun 2019 — In publishKeyEvent, publishMotionEvent and sendUnchainedFinishedSignal of InputTransport.cpp, there are uninitialized data leading to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-115739809 En publishKeyEvent, publishMotionEvent y sendUnchainedFinishedSignal de InputTransport.cpp, hay datos sin inicializar que conducen... • https://source.android.com/security/bulletin/2019-03-01 • CWE-908: Use of Uninitialized Resource •
CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2019-2099
https://notcve.org/view.php?id=CVE-2019-2099
07 Jun 2019 — In nfa_rw_store_ndef_rx_buf of nfa_rw_act.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. • https://source.android.com/security/bulletin/2019-06-01 • CWE-787: Out-of-bounds Write •