CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0439
https://notcve.org/view.php?id=CVE-2017-0439
08 Feb 2017 — An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32450647. • http://www.securityfocus.com/bid/96047 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 0%CPEs: 28EXPL: 0CVE-2017-0419
https://notcve.org/view.php?id=CVE-2017-0419
08 Feb 2017 — An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-32220769. • http://www.securityfocus.com/bid/96055 •
CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0427
https://notcve.org/view.php?id=CVE-2017-0427
08 Feb 2017 — An elevation of privilege vulnerability in the kernel file system could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31495866. • http://www.securityfocus.com/bid/96071 •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0446
https://notcve.org/view.php?id=CVE-2017-0446
08 Feb 2017 — An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-32917445. • http://www.securityfocus.com/bid/96054 •
CVSS: 5.5EPSS: 0%CPEs: 28EXPL: 0CVE-2017-0420
https://notcve.org/view.php?id=CVE-2017-0420
08 Feb 2017 — An information disclosure vulnerability in AOSP Mail could enable a local malicious application to bypass operating system protections that isolate application data from other applications. This issue is rated as High because it could be used to gain access to data that the application does not have access to. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-32615212. • http://www.securityfocus.com/bid/96093 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 0CVE-2017-0422
https://notcve.org/view.php?id=CVE-2017-0422
08 Feb 2017 — A denial of service vulnerability in Bionic DNS could enable a remote attacker to use a specially crafted network packet to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-32322088. • http://www.securityfocus.com/bid/96097 • CWE-20: Improper Input Validation •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0440
https://notcve.org/view.php?id=CVE-2017-0440
08 Feb 2017 — An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-33252788. • http://www.securityfocus.com/bid/96047 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2017-0415
https://notcve.org/view.php?id=CVE-2017-0415
08 Feb 2017 — An elevation of privilege vulnerability in Mediaserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-32706020. • http://www.securityfocus.com/bid/96089 •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0435
https://notcve.org/view.php?id=CVE-2017-0435
08 Feb 2017 — An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31906657. • http://www.securityfocus.com/bid/96053 •
CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0CVE-2017-0441
https://notcve.org/view.php?id=CVE-2017-0441
08 Feb 2017 — An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32872662. • http://www.securityfocus.com/bid/96047 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •