cbcvebase.

Google Inc Android vulnerabilities

959 known vulnerabilities affecting google_inc/android.

Total CVEs
959
CISA KEV
0
Public exploits
21
Exploited in wild
0
Severity breakdown
CRITICAL70HIGH617MEDIUM268LOW4

Vulnerabilities

Page 15 of 48
CVE-2017-13184HIGHCVSS 7.8v8.0v8.12018-01-12
CVE-2017-13184 [HIGH] CWE-416 CVE-2017-13184: In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyn In the enableVSyncInjections function of SurfaceFlinger, there is a possible use after free of mVSyncInjector. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android I
nvd
CVE-2017-13209HIGHCVSS 7.8PoCv8.0v8.12018-01-12
CVE-2017-13209 [HIGH] CWE-862 CVE-2017-13209: In the ServiceManager::add function in the hardware service manager, there is an insecure permission In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execut
nvd
CVE-2017-13150CRITICALCVSS 9.1v7.0v7.1.1+2 more2017-12-06
CVE-2017-13150 [CRITICAL] CWE-200 CVE-2017-13150: An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Vers An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-38328132.
nvd
CVE-2017-13160CRITICALCVSS 9.8v7.0v7.1.1+2 more2017-12-06
CVE-2017-13160 [CRITICAL] CWE-125 CVE-2017-13160: A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-37160362.
nvd
CVE-2017-0879CRITICALCVSS 9.1v7.0v7.1.1+2 more2017-12-06
CVE-2017-0879 [CRITICAL] CWE-200 CVE-2017-0879: An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Vers An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65025028.
nvd
CVE-2017-13149CRITICALCVSS 9.1v7.0v7.1.1+2 more2017-12-06
CVE-2017-13149 [CRITICAL] CWE-200 CVE-2017-13149: An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Vers An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-65719872.
nvd
CVE-2017-13158HIGHCVSS 7.5v5.1.1v6.0+5 more2017-12-06
CVE-2017-13158 [HIGH] CWE-200 CVE-2017-13158: An information disclosure vulnerability in the Android system (activitymanagerservice). Product: And An information disclosure vulnerability in the Android system (activitymanagerservice). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-32879915.
nvd
CVE-2017-13174HIGHCVSS 7.8vAndroid kernel2017-12-06
CVE-2017-13174 [HIGH] CVE-2017-13174: An elevation of privilege vulnerability in the kernel edl. Product: Android. Versions: Android kerne An elevation of privilege vulnerability in the kernel edl. Product: Android. Versions: Android kernel. Android ID A-63100473.
nvd
CVE-2017-13169HIGHCVSS 7.5vAndroid kernel2017-12-06
CVE-2017-13169 [HIGH] CWE-200 CVE-2017-13169: An information disclosure vulnerability in the kernel camera server. Product: Android. Versions: And An information disclosure vulnerability in the kernel camera server. Product: Android. Versions: Android kernel. Android ID A-37512375.
nvd
CVE-2017-13157HIGHCVSS 7.5v5.1.1v6.0+5 more2017-12-06
CVE-2017-13157 [HIGH] CWE-200 CVE-2017-13157: An information disclosure vulnerability in the Android system (activitymanagerservice). Product: And An information disclosure vulnerability in the Android system (activitymanagerservice). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-32990341.
nvd
CVE-2017-0871HIGHCVSS 7.8v8.02017-12-06
CVE-2017-0871 [HIGH] CVE-2017-0871: An elevation of privilege vulnerability in the Android framework (framework base). Product: Android. An elevation of privilege vulnerability in the Android framework (framework base). Product: Android. Versions: 8.0. Android ID A-65281159.
nvd
CVE-2017-13152HIGHCVSS 7.5v5.1.1v6.0+5 more2017-12-06
CVE-2017-13152 [HIGH] CWE-200 CVE-2017-13152: An information disclosure vulnerability in the Android media framework (libmedia drm). Product: Andr An information disclosure vulnerability in the Android media framework (libmedia drm). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-62872384.
nvd
CVE-2017-13166HIGHCVSS 7.8vAndroid kernel2017-12-06
CVE-2017-13166 [HIGH] CWE-787 CVE-2017-13166: An elevation of privilege vulnerability in the kernel v4l2 video driver. Product: Android. Versions: An elevation of privilege vulnerability in the kernel v4l2 video driver. Product: Android. Versions: Android kernel. Android ID A-34624167.
nvd
CVE-2017-13162HIGHCVSS 7.8vAndroid kernel2017-12-06
CVE-2017-13162 [HIGH] CVE-2017-13162: An elevation of privilege vulnerability in the kernel binder. Product: Android. Versions: Android ke An elevation of privilege vulnerability in the kernel binder. Product: Android. Versions: Android kernel. Android ID A-64216036.
nvd
CVE-2017-13154HIGHCVSS 7.8v5.1.1v6.0+5 more2017-12-06
CVE-2017-13154 [HIGH] CWE-416 CVE-2017-13154: An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: An An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-63666573.
nvd
CVE-2017-13171HIGHCVSS 7.8vAndroid kernel2017-12-06
CVE-2017-13171 [HIGH] CVE-2017-13171: An elevation of privilege vulnerability in the MediaTek performance service. Product: Android. Versi An elevation of privilege vulnerability in the MediaTek performance service. Product: Android. Versions: Android kernel. Android ID A-64316572. References: M-ALPS03479086.
nvd
CVE-2017-13163HIGHCVSS 7.8vAndroid kernel2017-12-06
CVE-2017-13163 [HIGH] CVE-2017-13163: An elevation of privilege vulnerability in the kernel mtp usb driver. Product: Android. Versions: An An elevation of privilege vulnerability in the kernel mtp usb driver. Product: Android. Versions: Android kernel. Android ID A-37429972.
nvd
CVE-2017-0877HIGHCVSS 8.8v6.02017-12-06
CVE-2017-0877 [HIGH] CWE-20 CVE-2017-0877: A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Ver A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0. Android ID A-66372937.
nvd
CVE-2017-13156HIGHCVSS 7.8PoCv5.1.1v6.0+5 more2017-12-06
CVE-2017-13156 [HIGH] CWE-434 CVE-2017-13156: An elevation of privilege vulnerability in the Android system (art). Product: Android. Versions: 5.1 An elevation of privilege vulnerability in the Android system (art). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-64211847.
nvd
CVE-2017-13159HIGHCVSS 7.5v5.1.1v6.0+5 more2017-12-06
CVE-2017-13159 [HIGH] CWE-200 CVE-2017-13159: An information disclosure vulnerability in the Android system (activitymanagerservice). Product: And An information disclosure vulnerability in the Android system (activitymanagerservice). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-32879772.
nvd
← Previous15 / 48Next →
Google Inc Android vulnerabilities | cvebase