CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-0749
https://notcve.org/view.php?id=CVE-2017-0749
A elevation of privilege vulnerability in the Upstream Linux linux kernel. Product: Android. Versions: Android kernel. Android ID: A-36007735. Existe una vulnerabilidad de elevación de privilegios en el kernel linux en Upstream Linux. • http://www.securityfocus.com/bid/100215 https://bugzilla.novell.com/show_bug.cgi?id=1053162 https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-0749.html https://security-tracker.debian.org/tracker/CVE-2017-0749 https://source.android.com/security/bulletin/2017-08-01 •
CVSS: 5.5EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0726
https://notcve.org/view.php?id=CVE-2017-0726
A denial of service vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36389123. Existe una vulnerabilidad de denegación de servicio en el media framework de Android (libstagefright). • http://www.securityfocus.com/bid/100204 https://source.android.com/security/bulletin/2017-08-01 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 9.3EPSS: 0%CPEs: 29EXPL: 0CVE-2017-0745
https://notcve.org/view.php?id=CVE-2017-0745
A remote code execution vulnerability in the Android media framework (avc decoder). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37079296. Existe una vulnerabilidad de ejecución remota de código en el media framework de Android (avc decoder). • http://www.securityfocus.com/bid/100204 https://source.android.com/security/bulletin/2017-08-01 • CWE-665: Improper Initialization •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2017-0728
https://notcve.org/view.php?id=CVE-2017-0728
A denial of service vulnerability in the Android media framework (hevc decoder). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37469795. Existe una vulnerabilidad de denegación de servicio en el media framework en Android (hevc decoder). • http://www.securityfocus.com/bid/100204 https://source.android.com/security/bulletin/2017-08-01 •
CVSS: 8.8EPSS: 2%CPEs: 9EXPL: 0CVE-2017-5098 – chromium-browser: use after free in v8
https://notcve.org/view.php?id=CVE-2017-5098
A use after free in V8 in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Un uso de memoria previamente liberada en V8 en Google Chrome, en versiones anteriores a la 60.0.3112.78 para Mac, Windows, Linux y Android, permitía que un atacante remoto realizase una lectura de memoria fuera de límites mediante una página HTML manipulada. • http://www.debian.org/security/2017/dsa-3926 http://www.securityfocus.com/bid/99950 https://access.redhat.com/errata/RHSA-2017:1833 https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html https://crbug.com/740803 https://security.gentoo.org/glsa/201709-15 https://access.redhat.com/security/cve/CVE-2017-5098 https://bugzilla.redhat.com/show_bug.cgi?id=1475200 • CWE-416: Use After Free •