Mobile device vulnerabilities

Showing 2951 - 3000 of 4.2K CVEs

  1. CVE-2017-7367 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability exists while processing the boot image.

  2. CVE-2017-7366 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a KGSL ioctl was not validating all of its parameters.

  3. CVE-2017-7365 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated.

  4. CVE-2016-10342 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a syscall handler.

  5. CVE-2016-10341 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, 3rd party TEEs have more privilege than intended.

  6. CVE-2016-10340 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an integer underflow leading to buffer overflow vulnerability exists in a syscall handler.

  7. CVE-2016-10339 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, HLOS can overwite secure memory or read contents of the keystore.

  8. CVE-2016-10338 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, there was an issue related to RPMB processing.

  9. CVE-2016-10337 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, some validation of secure applications was not being performed.

  10. CVE-2016-10336 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, some regions of memory were not protected during boot.

  11. CVE-2016-10335 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, libtomcrypt was updated.

  12. CVE-2016-10334 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a dynamically-protected DDR region could potentially get overwritten.

  13. CVE-2016-10333 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a sensitive system call was allowed to be called by HLOS.

  14. CVE-2016-10332 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, stack protection was not enabled for secure applications.

  15. CVE-2015-9033 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a QTEE system call fails to validate a pointer.

  16. CVE-2015-9032 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a DRM key was exposed to QTEE applications.

  17. CVE-2015-9031 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a TZ memory address is exposed to HLOS by HDCP.

  18. CVE-2015-9030 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, the Hypervisor API could be misused to bypass authentication.

  19. CVE-2015-9029 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a vulnerability exists in the access control settings of modem memory.

  20. CVE-2015-9028 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a cryptographic routine.

  21. CVE-2015-9027 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.

  22. CVE-2015-9026 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.

  23. CVE-2015-9025 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a QTEE application.

  24. CVE-2015-9024 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed to QTEE applications.

  25. CVE-2015-9023 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.

  26. CVE-2015-9022 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs.

  27. CVE-2015-9021 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, access control to SMEM memory was not enabled.

  28. CVE-2015-9020 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory.

  29. CVE-2014-9967 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.

  30. CVE-2014-9966 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists in Secure Display.

  31. CVE-2014-9965 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of an SCM call.

  32. CVE-2014-9964 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in debug functionality.

  33. CVE-2014-9963 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WideVine DRM.

  34. CVE-2014-9962 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of a DRM provisioning command.

  35. CVE-2014-9961 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection.

  36. CVE-2014-9960 Published Jun 13, 2017

    In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.

  37. CVE-2014-7919 Published Jun 8, 2017

    b/libs/gui/ISurfaceComposer.cpp in Android allows attackers to trigger a denial of service (null pointer dereference and process crash).

  38. CVE-2015-3830 Published Jun 6, 2017

    The stock Android browser address bar in all Android operating systems suffers from Address Bar Spoofing, which allows remote attackers to trick a victim by displaying a malicious page for legitimate domain names.

  39. CVE-2016-10297 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, a Time-of-Check Time-of-Use Race Condition vulnerability could potentially exist.

  40. CVE-2015-9007 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, a Double Free vulnerability could potentially exist.

  41. CVE-2015-9006 Published Jun 6, 2017

    In Resource Power Manager (RPM) in all Android releases from CAF using the Linux kernel, an Improper Access Control vulnerability could potentially exist.

  42. CVE-2015-9005 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist.

  43. CVE-2014-9952 Published Jun 6, 2017

    In the Secure File System in all Android releases from CAF using the Linux kernel, a capture-replay vulnerability could potentially exist.

  44. CVE-2014-9951 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, an Information Exposure Through Timing Discrepancy vulnerability could potentially exist.

  45. CVE-2014-9950 Published Jun 6, 2017

    In Core Kernel in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist.

  46. CVE-2014-9949 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer Dereference vulnerability could potentially exist.

  47. CVE-2014-9948 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Validation of Array Index vulnerability could potentially exist.

  48. CVE-2014-9947 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, an Information Exposure vulnerability could potentially exist.

  49. CVE-2014-9946 Published Jun 6, 2017

    In Core Kernel in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.

  50. CVE-2014-9945 Published Jun 6, 2017

    In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist.