|
223571
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional exe…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2129
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223572
|
7.8 |
HIGH
Local
|
google
|
android
|
In ACELP_4t64_fx of c4t64fx.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2128
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223573
|
7.8 |
HIGH
Local
|
google
|
android
|
In AudioInputDescriptor::setClientActive of AudioInputDescriptor.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional …
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-2127
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223574
|
8.8 |
HIGH
Network
|
google
fedoraproject
canonical
opensuse
|
android
fedora
ubuntu_linux
leap
|
In ParseContentEncodingEntry of mkvparser.cc, there is a possible double free due to a missing reset of a freed pointer. This could lead to remote code execution with no additional execution privileg…
|
CWE-415
Double Free
|
CVE-2019-2126
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223575
|
7.3 |
HIGH
Local
|
google
|
android
|
In ChangeDefaultDialerDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a local app without t…
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2019-2125
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223576
|
7.3 |
HIGH
Local
|
google
|
android
|
In LockTaskController.lockKeyguardIfNeeded of the LockTaskController.java, there was a difference in the handling of the default case between the WindowManager and the Settings. This could lead to a …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2019-2122
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223577
|
7.0 |
HIGH
Local
|
google
|
android
|
In ActivityManagerService.attachApplication of ActivityManagerService, there is a possible race condition. This could lead to local escalation of privilege with no additional execution privileges nee…
|
CWE-362
Race Condition
|
CVE-2019-2121
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223578
|
7.8 |
HIGH
Local
|
google
|
android
|
In OatFileAssistant::GenerateOatFile of oat_file_assistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no add…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-2120
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223579
|
7.1 |
HIGH
Network
|
mongodb
|
mongodb
|
After user deletion in MongoDB Server the improper invalidation of authorization sessions allows an authenticated user's session to persist and become conflated with new accounts, if those accounts r…
|
CWE-613
Insufficient Session Expiration
|
CVE-2019-2386
|
2024-11-21 13:40 |
2019-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223580
|
7.8 |
HIGH
Local
|
qualcomm
|
ipq8074_firmware
qca8081_firmware
qcs404_firmware
qcs405_firmware
qcs605_firmware
sd_425_firmware
sd_427_firmware
sd_430_firmware
sd_435_firmware
sd_450_firmware
sd_625_…
|
Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna…
|
CWE-129
Improper Validation of Array Index
|
CVE-2019-2346
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
