|
219561
|
7.5 |
HIGH
Network
|
google
|
android
|
In VisitPointers of heap.cc, there is a possible out-of-bounds read due to type confusion. This could lead to remote information disclosure with no additional execution privileges needed. User intera…
|
CWE-125
CWE-843
Out-of-bounds Read
Type Confusion
|
CVE-2019-2052
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219562
|
7.5 |
HIGH
Network
|
google
|
android
|
In heap of spaces.h, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure when processing a proxy auto config file with no additio…
|
CWE-20
CWE-125
Improper Input Validation
Out-of-bounds Read
|
CVE-2019-2051
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219563
|
7.8 |
HIGH
Local
|
google
|
android
|
In tearDownClientInterface of WificondControl.java, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privilege…
|
CWE-416
CWE-667
Use After Free
Improper Locking
|
CVE-2019-2050
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219564
|
7.8 |
HIGH
Local
|
google
|
android
|
In SendMediaUpdate and SendFolderUpdate of avrcp_service.cc, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege in the Bluetooth service w…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-2049
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219565
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In UpdateLoadElement of ic.cc, there is a possible out-of-bounds write due to type confusion. This could lead to remote code execution in the proxy auto-config with no additional execution privileges…
|
CWE-787
CWE-843
Out-of-bounds Write
Type Confusion
|
CVE-2019-2047
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219566
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In CalculateInstanceSizeForDerivedClass of objects.cc, there is possible memory corruption due to an integer overflow. This could lead to remote code execution in the proxy auto-config with no additi…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-2046
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219567
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In JSCallTyper of typer.cc, there is an out of bounds write due to an incorrect bounds check. This could lead to remote code execution in the proxy auto-config with no additional execution privileges…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2045
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219568
|
8.8 |
HIGH
Network
|
google
|
android
|
In MakeMP>G4VideoCodecSpecificData of APacketSource.cpp, there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote code execution in the media server with no…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2044
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219569
|
7.3 |
HIGH
Local
|
google
|
android
|
In SmsDefaultDialog.onStart of SmsDefaultDialog.java, there is a possible escalation of privilege due to an overlay attack. This could lead to local escalation of privilege, granting privileges to a …
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-2043
|
2024-11-21 13:40 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219570
|
7.3 |
HIGH
Local
|
google
|
android
|
In the configuration of NFC modules on certain devices, there is a possible failure to distinguish individual devices due to an insecure default value. This could lead to local escalation of privileg…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-2041
|
2024-11-21 13:40 |
2019-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
