|
222651
|
7.8 |
HIGH
Local
|
google
|
android
|
In GateKeeper::MintAuthToken of gatekeeper.cpp in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with…
|
CWE-787
CWE-415
Out-of-bounds Write
Double Free
|
CVE-2019-2115
|
2024-11-21 13:40 |
2019-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222652
|
7.8 |
HIGH
Local
|
google
|
android
|
In ihevcd_ref_list of ihevcd_ref_list.c in Android 10, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution pri…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2108
|
2024-11-21 13:40 |
2019-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222653
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Google Assistant in Android 9, there is a possible permissions bypass that allows the Assistant to take a screenshot of apps with FLAG_SECURE. This could lead to local information disclosure with …
|
CWE-200
Information Exposure
|
CVE-2019-2103
|
2024-11-21 13:40 |
2019-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222654
|
7.8 |
HIGH
Local
|
mongodb
|
mongodb
|
An unprivileged user or program on Microsoft Windows which can create OpenSSL configuration files in a fixed location may cause utility programs shipped with MongoDB server to run attacker defined c…
|
NVD-CWE-noinfo
|
CVE-2019-2390
|
2024-11-21 13:40 |
2019-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222655
|
4.2 |
MEDIUM
Local
|
mongodb
|
mongodb
|
Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the Mo…
|
CWE-20
Improper Input Validation
|
CVE-2019-2389
|
2024-11-21 13:40 |
2019-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222656
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User ex…
|
CWE-862
Missing Authorization
|
CVE-2019-2137
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222657
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Status::readFromParcel of Status.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileg…
|
CWE-20
CWE-125
Improper Input Validation
Out-of-bounds Read
|
CVE-2019-2136
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222658
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privi…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2135
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222659
|
7.8 |
HIGH
Local
|
google
|
android
|
In phFriNfc_ExtnsTransceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execut…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-2134
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222660
|
7.8 |
HIGH
Local
|
google
|
android
|
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution pri…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2133
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
