|
222671
|
6.5 |
MEDIUM
Adjacent
|
google
|
android
|
In avrc_pars_browse_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional ex…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-1996
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222672
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In ComposeActivityEmail of ComposeActivityEmail.java, there is a possible way to silently attach files to an email due to a confused deputy. This could lead to local information disclosure, sending f…
|
NVD-CWE-noinfo
|
CVE-2019-1995
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222673
|
8.8 |
HIGH
Network
|
google
|
android
|
In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings accessible due to an insecure default value. This could lead to unwanted access to development settings, …
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-1994
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222674
|
7.8 |
HIGH
Local
|
google
|
android
|
In register_app of btif_hd.cc, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User …
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-1993
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222675
|
7.5 |
HIGH
Network
|
google
|
android
|
In bta_hl_sdp_query_results of bta_hl_main.cc, there is a possible use-after-free due to a race condition. This could lead to remote code execution with no additional execution privileges needed. Use…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2019-1992
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222676
|
8.8 |
HIGH
Network
|
google
|
android
|
In btif_dm_data_copy of btif_core.cc, there is a possible out of bounds write due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User i…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1991
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222677
|
8.8 |
HIGH
Network
|
google
|
android
|
In sample6 of SkSwizzler.cpp, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution in system_server with no additional execution privileg…
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2019-1988
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222678
|
7.8 |
HIGH
Local
|
google
|
android
|
In onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1987
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222679
|
8.8 |
HIGH
Network
|
google
|
android
|
In SkSwizzler::onSetSampleX of SkSwizzler.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege in system_server with no additi…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-1986
|
2024-11-21 13:37 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222680
|
7.3 |
HIGH
Network
|
cisco
|
webex_teams
|
A vulnerability in the client application for iOS of Cisco Webex Teams could allow an authenticated, remote attacker to upload arbitrary files within the scope of the iOS application. The vulnerabili…
|
CWE-20
Improper Input Validation
|
CVE-2019-1689
|
2024-11-21 13:37 |
2019-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
