|
211441
|
8.8 |
HIGH
Network
|
google
opensuse
fedoraproject
debian
canonical
|
android
leap
fedora
debian_linux
ubuntu_linux
|
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-9278
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211442
|
3.3 |
LOW
Local
|
google
|
android
|
In the proc filesystem, there is a possible information disclosure due to log information disclosure. This could lead to local disclosure of app and browser activity with User execution privileges ne…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2019-9277
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211443
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In WiFi, there is a possible leak of WiFi state due to a permissions bypass. This could lead to a local information disclosure which could be used to determine device location with no additional exec…
|
CWE-863
Incorrect Authorization
|
CVE-2019-9272
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211444
|
7.3 |
HIGH
Local
|
google
|
android
|
In System Settings, there is a possible permissions bypass due to a cached Linux user ID. This could lead to a local permissions bypass with no additional execution privileges needed. User interactio…
|
CWE-613
Insufficient Session Expiration
|
CVE-2019-9269
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211445
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In libstagefright, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privileges needed. Use…
|
CWE-416
CWE-667
Use After Free
Improper Locking
|
CVE-2019-9268
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211446
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In sensorservice, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9266
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211447
|
7.5 |
HIGH
Network
|
google
|
android
|
In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interactio…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9265
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211448
|
6.5 |
MEDIUM
Network
|
google
|
android
|
In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9264
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211449
|
7.8 |
HIGH
Local
|
google
|
android
|
In telephony, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges ne…
|
CWE-862
Missing Authorization
|
CVE-2019-9263
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211450
|
8.8 |
HIGH
Network
|
google
|
android
|
In MPEG4Extractor, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the media extractor with no additional execution privileges needed. …
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-9262
|
2024-11-21 13:51 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
