|
197831
|
7.8 |
HIGH
Local
|
google
|
android
|
In PVRSRVBridgeRGXKickVRDM of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalatio…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-0872
|
2024-11-21 14:43 |
2023-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197832
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In findAllDeAccounts of AccountsDb.java, there is a possible denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. U…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2021-0934
|
2024-11-21 14:43 |
2022-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197833
|
7.8 |
HIGH
Local
|
google
|
android
|
In MMU_UnmapPages of the PowerVR kernel driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pr…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-1050
|
2024-11-21 14:43 |
2022-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197834
|
7.8 |
HIGH
Local
|
google
|
android
|
In HTBLogKM of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the kernel with no additional execution privileges neede…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0699
|
2024-11-21 14:43 |
2022-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197835
|
7.8 |
HIGH
Local
|
google
|
android
|
In DevmemIntHeapAcquire of TBD, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges neede…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-0951
|
2024-11-21 14:43 |
2022-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197836
|
7.0 |
HIGH
Local
|
google
|
android
|
In dllist_remove_node of TBD, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User int…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2021-0696
|
2024-11-21 14:43 |
2022-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197837
|
7.8 |
HIGH
Local
|
google
|
android
|
In MMU_MapPages of TBD, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0943
|
2024-11-21 14:43 |
2022-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197838
|
9.8 |
CRITICAL
Network
|
google
|
android
|
The path in this case is a little bit convoluted. The end result is that via an ioctl an untrusted app can control the ui32PageIndex offset in the expression:sPA.uiAddr = page_to_phys(psOSPageArrayDa…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-0942
|
2024-11-21 14:43 |
2022-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197839
|
7.8 |
HIGH
Local
|
google
|
android
|
In PVRSRVBridgePMRPDumpSymbolicAddr of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-0871
|
2024-11-21 14:43 |
2022-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197840
|
7.0 |
HIGH
Local
|
google
|
android
|
In PVRSRVRGXSubmitTransferKM of rgxtransfer.c, there is a possible user after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges ne…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2021-0697
|
2024-11-21 14:43 |
2022-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
