|
222721
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In various functions of Parcel.cpp, there are uninitialized or partially initialized stack variables. These could lead to local information disclosure with no additional execution privileges needed. …
|
CWE-908
Use of Uninitialized Resource
|
CVE-2019-2118
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222722
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In checkQueryPermission of TelephonyProvider.java, there is a possible disclosure of secure data due to a missing permission check. This could lead to local information disclosure about carrier syste…
|
CWE-862
Missing Authorization
|
CVE-2019-2117
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222723
|
7.5 |
HIGH
Network
|
google
|
android
|
In save_attr_seq of sdp_discovery.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges nee…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2116
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222724
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not need…
|
NVD-CWE-noinfo
|
CVE-2019-2113
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222725
|
7.8 |
HIGH
Local
|
google
|
android
|
In several functions of alarm.cc, there is possible memory corruption due to a use after free. This could lead to local code execution with no additional execution privileges needed. User interaction…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-2112
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222726
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In loop of DnsTlsSocket.cpp, there is a possible heap memory corruption due to a use after free. This could lead to remote code execution in the netd server with no additional execution privileges ne…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-2111
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222727
|
8.8 |
HIGH
Network
|
google
|
android
|
In MakeMPEG4VideoCodecSpecificData of AVIExtractor.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2109
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222728
|
8.8 |
HIGH
Network
|
google
|
android
|
In ihevcd_parse_pps of ihevcd_parse_headers.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2107
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222729
|
8.8 |
HIGH
Network
|
google
|
android
|
In ihevcd_sao_shift_ctb of ihevcd_sao.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2106
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222730
|
8.8 |
HIGH
Network
|
google
|
android
|
In FileInputStream::Read of file_input_stream.cc, there is a possible memory corruption due to uninitialized data. This could lead to remote code execution in an unprivileged process with no addition…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2019-2105
|
2024-11-21 13:40 |
2019-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
