CVEs from 2017
Total
11,664
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-17124 | high | 7.8 | 7.8 | 9y ago | The _bfd_coff_read_string_table function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not properly validate the size of the exter… | |||
| CVE-2017-17122 | high | 7.8 | 7.8 | 9y ago | The dump_relocs_in_section function in objdump.c in GNU Binutils 2.29.1 does not check for reloc count integer overflows, which allows remote attackers to cause a denial of service (excessive memory … | |||
| CVE-2017-17121 | high | 7.8 | 7.8 | 9y ago | The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, allows remote attackers to cause a denial of service (memory access violation) or possibly have unspecifi… | |||
| CVE-2017-17114 | high | 7.8 | 7.8 | 9y ago | ntguard.sys and ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 have a Memory Corruption vulnerability via a 0x83000084 DeviceIoControl request. | |||
| CVE-2017-17112 | high | 7.8 | 7.8 | 9y ago | ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a Pool Corruption vulnerability via a 0x83000058 DeviceIoControl request. | |||
| CVE-2017-17099 | high | 7.8 | 7.8 | 9y ago | There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possi… | |||
| CVE-2017-10892 | high | 7.8 | 7.8 | 9y ago | Untrusted search path vulnerability in Music Center for PC version 1.0.00 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | |||
| CVE-2017-10891 | high | 7.8 | 7.8 | 9y ago | Untrusted search path vulnerability in Media Go version 3.2.0.191 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | |||
| CVE-2017-17052 | high | 7.8 | 7.8 | 9y ago | The mm_init function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the ->exe_file member of a new process's mm_struct, allowing a local attacker to achieve a use-after-free or po… | |||
| CVE-2017-17050 | high | 7.8 | 7.8 | 9y ago | TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730020 DeviceIoContr… | |||
| CVE-2017-17049 | high | 7.8 | 7.8 | 9y ago | TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730010 DeviceIoContr… | |||
| CVE-2017-1000159 | high | 7.8 | 7.8 | 9y ago | Command injection in evince via filename when printing to PDF. This affects versions earlier than 3.25.91. | |||
| CVE-2017-16948 | high | 7.8 | 7.8 | 9y ago | TG Soft Vir.IT eXplorer Lite 8.5.42 allows local users to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact via a NULL value in a 0x82730008 DeviceIoContr… | |||
| CVE-2017-16938 | high | 7.8 | 7.8 | 9y ago | A global buffer overflow in OptiPNG 0.7.6 allows remote attackers to cause a denial-of-service attack or other unspecified impact with a maliciously crafted GIF format file, related to an uncontrolle… | |||
| CVE-2017-7501 | high | 7.8 | 7.8 | 9y ago | It was found that versions of rpm before 4.13.0.2 use temporary files with predictable names when installing an RPM. An attacker with ability to write in a directory where files will be installed cou… | |||
| CVE-2017-16879 | high | 7.8 | 7.8 | 9y ago | Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code … | |||
| CVE-2017-8212 | high | 7.8 | 7.8 | 9y ago | The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the … | |||
| CVE-2017-8211 | high | 7.8 | 7.8 | 9y ago | The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the … | |||
| CVE-2017-8210 | high | 7.8 | 7.8 | 9y ago | The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the … | |||
| CVE-2017-8209 | high | 7.8 | 7.8 | 9y ago | The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the … | |||
| CVE-2017-8208 | high | 7.8 | 7.8 | 9y ago | The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the … | |||
| CVE-2017-8207 | high | 7.8 | 7.8 | 9y ago | The driver of honor 5C, honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the… | |||
| CVE-2017-8205 | high | 7.8 | 7.8 | 9y ago | The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has integer overflow vulnerability due to the lack of parameter validation. An attacker tr… | |||
| CVE-2017-8204 | high | 7.8 | 7.8 | 9y ago | The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker t… | |||
| CVE-2017-8203 | high | 7.8 | 7.8 | 9y ago | The Bastet Driver of Nova 2 Plus,Nova 2 Huawei smart phones with software of Versions earlier than BAC-AL00C00B173,Versions earlier than PIC-AL00C00B173 has a use after free (UAF) vulnerability. An a… | |||
| CVE-2017-8192 | high | 7.8 | 7.8 | 9y ago | FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper authorization, an attacker with low privilege may exploit this vulnerability to obtain the operation au… | |||
| CVE-2017-8185 | high | 7.8 | 7.8 | 9y ago | ME906s-158 earlier than ME906S_Installer_13.1805.10.3 versions has a privilege elevation vulnerability. An attacker could exploit this vulnerability to modify the configuration information containing… | |||
| CVE-2017-8181 | high | 7.8 | 7.8 | 9y ago | The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a arbitrary memory write vulnerability.Due to the insufficient input verification,… | |||
| CVE-2017-8180 | high | 7.8 | 7.8 | 9y ago | The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a buffer overflow vulnerability.Due to the insufficient input verification, an att… | |||
| CVE-2017-8179 | high | 7.8 | 7.8 | 9y ago | The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a buffer overflow vulnerability.Due to the insufficient input verification, an att… | |||
| CVE-2017-8170 | high | 7.8 | 7.8 | 9y ago | Huawei smart phones with software earlier than VIE-L09C40B360 versions have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malici… | |||
| CVE-2017-8169 | high | 7.8 | 7.8 | 9y ago | Huawei smart phones with software earlier than VIE-L09C40B360 versions have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malici… | |||
| CVE-2017-8160 | high | 7.8 | 7.8 | 9y ago | The Madapt Driver of some Huawei smart phones with software Earlier than Vicky-AL00AC00B172 versions,Vicky-AL00CC768B122,Vicky-TL00AC01B167,Earlier than Victoria-AL00AC00B172 versions,Victoria-TL00AC… | |||
| CVE-2017-8159 | high | 7.8 | 7.8 | 9y ago | Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012 have a type confusion vulnerability. The program initializes a variable using one type, but it la… | |||
| CVE-2017-8150 | high | 7.8 | 7.8 | 9y ago | The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 ha… | |||
| CVE-2017-8142 | high | 7.8 | 7.8 | 9y ago | The Trusted Execution Environment (TEE) module driver of Mate 9 and Mate 9 Pro smart phones with software versions earlier than MHA-AL00BC00B221 and versions earlier than LON-AL00BC00B221 has a use a… | |||
| CVE-2017-8141 | high | 7.8 | 7.8 | 9y ago | The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android sys… | |||
| CVE-2017-8140 | high | 7.8 | 7.8 | 9y ago | The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious appl… | |||
| CVE-2017-8137 | high | 7.8 | 7.8 | 9y ago | HedEx Earlier than V200R006C00 versions has a dynamic link library (DLL) hijacking vulnerability due to calling the DDL file by accessing a relative path. An attacker could exploit this vulnerability… | |||
| CVE-2017-2729 | high | 7.8 | 7.8 | 9y ago | The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than CAM-UL00C00B193 have a buffer overflow vulne… | |||
| CVE-2017-2725 | high | 7.8 | 7.8 | 9y ago | Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root priv… | |||
| CVE-2017-2716 | high | 7.8 | 7.8 | 9y ago | The camerafs driver in Mate 9 Versions earlier than MHA-AL00BC00B173 has buffer overflow vulnerability. An attacker tricks a user into installing a malicious application which has the system privileg… | |||
| CVE-2017-2715 | high | 7.8 | 7.8 | 9y ago | The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attack… | |||
| CVE-2017-2699 | high | 7.8 | 7.8 | 9y ago | The Huawei Themes APP in versions earlier than PLK-UL00C17B385, versions earlier than CRR-L09C432B380, versions earlier than LYO-L21C577B128 has a privilege elevation vulnerability. An attacker could… | |||
| CVE-2017-2698 | high | 7.8 | 7.8 | 9y ago | The ddr_devfreq driver in versions earlier than GRA-UL00C00B197 has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malici… | |||
| CVE-2017-2697 | high | 7.8 | 7.8 | 9y ago | The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlie… | |||
| CVE-2017-2696 | high | 7.8 | 7.8 | 9y ago | The emerg_data driver in CAM-L21C10B130 and earlier versions, CAM-L21C185B141 and earlier versions has a buffer overflow vulnerability. An attacker with the root privilege of the Android system can t… | |||
| CVE-2017-2693 | high | 7.8 | 7.8 | 9y ago | ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,ALE-L21C185B200 and earlier versions,ALE-L21C432B214 and earlier versions,ALE-L21C464B150… | |||
| CVE-2017-2692 | high | 7.8 | 7.8 | 9y ago | The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,ALE-L21C185B200 and earlier versions,ALE-L21C432B214 and earl… | |||
| CVE-2017-5711 | high | 7.8 | 7.8 | 9y ago | Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to e… | |||
| CVE-2017-5710 | high | 7.8 | 7.8 | 9y ago | Multiple privilege escalations in kernel in Intel Trusted Execution Engine Firmware 3.0 allows unauthorized process to access privileged content via unspecified vector. | |||
| CVE-2017-5709 | high | 7.8 | 7.8 | 9y ago | Multiple privilege escalations in kernel in Intel Server Platform Services Firmware 4.0 allows unauthorized process to access privileged content via unspecified vector. | |||
| CVE-2017-5708 | high | 7.8 | 7.8 | 9y ago | Multiple privilege escalations in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow unauthorized process to access privileged content via unspecified vector. | |||
| CVE-2017-5707 | high | 7.8 | 7.8 | 9y ago | Multiple buffer overflows in kernel in Intel Trusted Execution Engine Firmware 3.0 allow attacker with local access to the system to execute arbitrary code. | |||
| CVE-2017-5706 | high | 7.8 | 7.8 | 9y ago | Multiple buffer overflows in kernel in Intel Server Platform Services Firmware 4.0 allow attacker with local access to the system to execute arbitrary code. | |||
| CVE-2017-5705 | high | 7.8 | 7.8 | 9y ago | Multiple buffer overflows in kernel in Intel Manageability Engine Firmware 11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code. | |||
| CVE-2017-2919 | high | 7.8 | 7.8 | 9y ago | An exploitable stack based buffer overflow vulnerability exists in the xls_getfcell function of libxls 1.3.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execu… | |||
| CVE-2017-2897 | high | 7.8 | 7.8 | 9y ago | An exploitable out-of-bounds write vulnerability exists in the read_MSAT function of libxls 1.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An atta… | |||
| CVE-2017-2896 | high | 7.8 | 7.8 | 9y ago | An exploitable out-of-bounds write vulnerability exists in the xls_mergedCells function of libxls 1.4. . A specially crafted XLS file can cause a memory corruption resulting in remote code execution.… | |||
| CVE-2017-12111 | high | 7.8 | 7.8 | 9y ago | An exploitable out-of-bounds vulnerability exists in the xls_addCell function of libxls 1.4. A specially crafted XLS file with a formula record can cause memory corruption resulting in remote code ex… | |||
| CVE-2017-12110 | high | 7.8 | 7.8 | 9y ago | An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution. | |||
| CVE-2017-12608 | high | 7.8 | 7.8 | 9y ago | A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory… | |||
| CVE-2017-12607 | high | 7.8 | 7.8 | 9y ago | A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and appl… | |||
| CVE-2017-9806 | high | 7.8 | 7.8 | 9y ago | A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fonts Constructor, allows attackers to craft malicious documents that cause denial of service (memory… | |||
| CVE-2017-16882 | high | 7.8 | 7.8 | 9y ago | Icinga Core through 1.14.0 initially executes bin/icinga as root but supports configuration options in which this file is owned by a non-root account (and similarly can have etc/icinga.cfg owned by a… | |||
| CVE-2017-4939 | high | 7.8 | 7.8 | 9y ago | VMware Workstation (12.x before 12.5.8) installer contains a DLL hijacking issue that exists due to some DLL files loaded by the application improperly. This issue may allow an attacker to load a DLL… | |||
| CVE-2017-4937 | high | 7.8 | 7.8 | 9y ago | VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this m… | |||
| CVE-2017-4936 | high | 7.8 | 7.8 | 9y ago | VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this m… | |||
| CVE-2017-4935 | high | 7.8 | 7.8 | 9y ago | VMware Workstation (12.x before 12.5.8) and Horizon View Client for Windows (4.x before 4.6.1) contain an out-of-bounds write vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this … | |||
| CVE-2017-10887 | high | 7.8 | 7.8 | 9y ago | Untrusted search path vulnerability in BOOK WALKER for Windows Ver.1.2.9 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | |||
| CVE-2017-16869 | high | 7.8 | 7.8 | 9y ago | p_mach.cpp in UPX 3.94 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly have unspecified other impact via a crafted Mach-O file, related … | |||
| CVE-2017-1000229 | high | 7.8 | 7.8 | 9y ago | Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service. | |||
| CVE-2017-1000187 | high | 7.8 | 7.8 | 9y ago | In SWFTools, an address access exception was found in pdf2swf. FoFiTrueType::writeTTF() | |||
| CVE-2017-0865 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the MediaTek soc driver. Product: Android. Versions: Android kernel. Android ID: A-65025090. References: M-ALPS02973195. | |||
| CVE-2017-0864 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the MediaTek ioctl (flashlight). Product: Android. Versions: Android kernel. Android ID: A-37277147. References: M-ALPS03394571. | |||
| CVE-2017-0863 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the Upstream kernel video driver. Product: Android. Versions: Android kernel. Android ID: A-37950620. | |||
| CVE-2017-0862 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the Upstream kernel kernel. Product: Android. Versions: Android kernel. Android ID: A-36006779. | |||
| CVE-2017-0861 | high | 7.8 | 7.8 | 9y ago | Use-after-free vulnerability in the snd_pcm_info function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors. | |||
| CVE-2017-0843 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the MediaTek ccci. Product: Android. Versions: Android kernel. Android ID: A-62670819. References: M-ALPS03361488. | |||
| CVE-2017-0842 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the Android system (bluetooth). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37502513. | |||
| CVE-2017-0841 | high | 7.8 | 7.8 | 9y ago | A remote code execution vulnerability in the Android system (libutils). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026. | |||
| CVE-2017-0838 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-63522818. | |||
| CVE-2017-0836 | high | 7.8 | 7.8 | 9y ago | A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64893226. | |||
| CVE-2017-0835 | high | 7.8 | 7.8 | 9y ago | A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63316832. | |||
| CVE-2017-0834 | high | 7.8 | 7.8 | 9y ago | A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63125953. | |||
| CVE-2017-0833 | high | 7.8 | 7.8 | 9y ago | A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62896384. | |||
| CVE-2017-0832 | high | 7.8 | 7.8 | 9y ago | A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62887820. | |||
| CVE-2017-0831 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the Android framework (window manager). Product: Android. Versions: 8.0. Android ID: A-37442941. | |||
| CVE-2017-0830 | high | 7.8 | 7.8 | 9y ago | An elevation of privilege vulnerability in the Android framework (device policy client). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62623498. | |||
| CVE-2017-9721 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the boot loader, a buffer overflow can occur while parsing the splash image. | |||
| CVE-2017-9719 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the kernel driver MDSS, a buffer overflow can occur in HDMI CEC parsing if frame siz… | |||
| CVE-2017-9702 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a user-space pointer is directly accessed in a camera driver. | |||
| CVE-2017-9690 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in a qbt1000 ioctl handler, an incorrect buffer size check has an integer overflow vuln… | |||
| CVE-2017-11092 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the KGSL driver function kgsl_ioctl_gpu_command, a Use After Free condition can pote… | |||
| CVE-2017-11091 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the function mdss_rotator_ioctl in the driver /dev/mdss_rotator, a Use-After-Free co… | |||
| CVE-2017-11085 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, an integer overflow leading to a buffer overflow due to improper bound checking in msm_… | |||
| CVE-2017-11073 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the qcacld pktlog allows mapping memory via /proc/ath_pktlog/cld to user space. | |||
| CVE-2017-11038 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing the boot image header, range checks can be bypassed by supplying diffe… | |||
| CVE-2017-11035 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, possible buffer overflow or information leak in the functions "sme_set_ft_ies" and "csr… | |||
| CVE-2017-11032 | high | 7.8 | 7.8 | 9y ago | In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a double free can occur when kmalloc fails to allocate memory for pointers resp/req in … |