|
212201
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In WiFi, there is a possible leak of WiFi state due to a permissions bypass. This could lead to a local information disclosure which could be used to determine device location with no additional exec…
|
CWE-863
Incorrect Authorization
|
CVE-2019-9272
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212202
|
7.3 |
HIGH
Local
|
google
|
android
|
In System Settings, there is a possible permissions bypass due to a cached Linux user ID. This could lead to a local permissions bypass with no additional execution privileges needed. User interactio…
|
CWE-613
Insufficient Session Expiration
|
CVE-2019-9269
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212203
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In libstagefright, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privileges needed. Use…
|
CWE-416
CWE-667
Use After Free
Improper Locking
|
CVE-2019-9268
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212204
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In sensorservice, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9266
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212205
|
7.5 |
HIGH
Network
|
google
|
android
|
In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interactio…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9265
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212206
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9264
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212207
|
7.8 |
HIGH
Local
|
google
|
android
|
In telephony, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges ne…
|
CWE-862
Missing Authorization
|
CVE-2019-9263
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212208
|
8.8 |
HIGH
Network
|
google
|
android
|
In MPEG4Extractor, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the media extractor with no additional execution privileges needed. …
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-9262
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212209
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9261
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212210
|
7.5 |
HIGH
Network
|
google
|
android
|
In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interactio…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9260
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
