|
221751
|
7.8 |
HIGH
Local
|
qualcomm
|
apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8096_firmware
apq8096au_firmware
apq8098_firmware
ipq8074_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware<…
|
Out of bound write in TZ while copying the secure dump structure on HLOS provided buffer as a part of memory dump in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer …
|
CWE-120
Classic Buffer Overflow
|
CVE-2019-2288
|
2024-11-21 13:40 |
2019-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221752
|
7.5 |
HIGH
Network
|
google
|
android
|
In handleRun of TextLine.java, there is a possible application crash due to improper input validation. This could lead to remote denial of service when processing Unicode with no additional execution…
|
CWE-20
CWE-682
Improper Input Validation
Incorrect Calculation
|
CVE-2019-2232
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221753
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In Blob::Blob of blob.cpp, there is a possible unencrypted master key due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User i…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2019-2231
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221754
|
7.5 |
HIGH
Network
|
google
|
android
|
In nfcManager_routeAid and nfcManager_unrouteAid of NativeNfcManager.cpp, there is possible memory reuse due to a use after free. This could lead to remote information disclosure with no additional e…
|
CWE-416
Use After Free
|
CVE-2019-2230
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221755
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In updateWidget of BaseWidgetProvider.java, there is a possible leak of user data due to a missing permission check. This could lead to local information disclosure with no additional execution privi…
|
CWE-862
Missing Authorization
|
CVE-2019-2229
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221756
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In array_find of array.c, there is a possible out-of-bounds read due to an incorrect bounds check. This could lead to local information disclosure in the printer spooler with no additional execution …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2228
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221757
|
6.5 |
MEDIUM
Adjacent
|
google
|
android
|
In DeepCopy of btif_av.cc, there is a possible out of bounds read due to improper casting. This could lead to remote information disclosure over Bluetooth with no additional execution privileges need…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2227
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221758
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In device_class_to_int of device_class.cc, there is a possible out of bounds read due to improper casting. This could lead to local information disclosure in the Bluetooth server with User execution …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2226
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221759
|
8.8 |
HIGH
Adjacent
|
google
|
android
|
When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to …
|
CWE-269
Improper Privilege Management
|
CVE-2019-2225
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221760
|
7.8 |
HIGH
Local
|
google
|
android
|
In ihevcd_ref_list of ihevcd_ref_list.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2223
|
2024-11-21 13:40 |
2019-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
