Total
7966 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-20375 | 1 Tinycc | 1 Tinycc | 2019-01-06 | 4.3 MEDIUM | 5.5 MEDIUM |
| An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the sym_pop function in tccgen.c. | |||||
| CVE-2018-20376 | 1 Tinycc | 1 Tinycc | 2019-01-06 | 4.3 MEDIUM | 5.5 MEDIUM |
| An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the asm_parse_directive function in tccasm.c. | |||||
| CVE-2018-9518 | 2 Canonical, Google | 2 Ubuntu Linux, Android | 2019-01-02 | 7.2 HIGH | 7.8 HIGH |
| In nfc_llcp_build_sdreq_tlv of llcp_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-73083945. | |||||
| CVE-2018-9559 | 1 Google | 1 Android | 2019-01-02 | 4.6 MEDIUM | 7.8 HIGH |
| In persist_set_key and other functions of cryptfs.cpp, there is a possible out-of-bounds write due to an uncaught error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-112731440. | |||||
| CVE-2018-7987 | 1 Huawei | 2 P20, P20 Firmware | 2018-12-27 | 4.3 MEDIUM | 5.9 MEDIUM |
| There is an out-of-bounds write vulnerability on Huawei P20 smartphones with versions before 8.1.0.171(C00). The software does not handle the response message properly when the user doing certain inquiry operation, an attacker could send crafted message to the device, successful exploit could cause a denial of service condition. | |||||
| CVE-2018-9537 | 1 Google | 1 Android | 2018-12-27 | 9.3 HIGH | 8.8 HIGH |
| In CAacDecoder_DecodeFrame of aacdecode.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112891564 | |||||
| CVE-2018-9522 | 1 Google | 1 Android | 2018-12-27 | 7.2 HIGH | 7.8 HIGH |
| In the serialization functions of StatsLogEventWrapper.java, there is a possible out-of-bounds write due to unnecessary functionality which may be abused. This could lead to local escalation of privilege in the system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112550251 | |||||
| CVE-2018-9521 | 1 Google | 1 Android | 2018-12-27 | 9.3 HIGH | 8.8 HIGH |
| In parseMPEGCCData of NuPlayer2CCDecoder.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-111874331 | |||||
| CVE-2018-6063 | 3 Debian, Google, Redhat | 5 Debian Linux, Chrome, Enterprise Linux Desktop and 2 more | 2018-12-26 | 6.8 MEDIUM | 8.8 HIGH |
| Incorrect use of mojo::WrapSharedMemoryHandle in Mojo in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. | |||||
| CVE-2018-6062 | 3 Debian, Google, Redhat | 5 Debian Linux, Chrome, Enterprise Linux Desktop and 2 more | 2018-12-21 | 6.8 MEDIUM | 8.8 HIGH |
| Heap overflow write in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. | |||||
| CVE-2018-9427 | 1 Google | 1 Android | 2018-12-18 | 9.3 HIGH | 7.8 HIGH |
| In CopyToOMX of OMXNodeInstance.cpp there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android Versions: Android-8.0 Android-8.1 Android ID: A-77486542. | |||||
| CVE-2018-9545 | 1 Google | 1 Android | 2018-12-17 | 4.6 MEDIUM | 7.8 HIGH |
| In BTA_HdRegisterApp of bta_hd_api.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-113111784 | |||||
| CVE-2018-9355 | 1 Google | 1 Android | 2018-12-14 | 10.0 HIGH | 9.8 CRITICAL |
| In bta_dm_sdp_result of bta_dm_act.cc, there is a possible out of bounds stack write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74016921. | |||||
| CVE-2018-9528 | 1 Google | 1 Android | 2018-12-14 | 6.8 MEDIUM | 8.8 HIGH |
| In ixheaacd_over_lap_add1_armv8 of ixheaacd_overlap_add1.s there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112551721 | |||||
| CVE-2018-9527 | 1 Google | 1 Android | 2018-12-14 | 9.3 HIGH | 7.8 HIGH |
| In vorbis_book_decodev_set of codebook.c there is a possible out of bounds write due to missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-112159345 | |||||
| CVE-2018-9529 | 1 Google | 1 Android | 2018-12-14 | 6.8 MEDIUM | 8.8 HIGH |
| In ixheaacd_individual_ch_stream of ixheaacd_channel.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112551874 | |||||
| CVE-2018-9530 | 1 Google | 1 Android | 2018-12-14 | 6.8 MEDIUM | 8.8 HIGH |
| In ixheaacd_tns_ar_filter_dec of ixheaacd_aac_tns.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112609715 | |||||
| CVE-2018-9531 | 1 Google | 1 Android | 2018-12-14 | 9.3 HIGH | 7.8 HIGH |
| In AudioSpecificConfig_Parse of tpdec_asc.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112661641 | |||||
| CVE-2018-9532 | 1 Google | 1 Android | 2018-12-14 | 6.8 MEDIUM | 8.8 HIGH |
| In ixheaacd_extract_frame_info_ld of ixheaacd_env_extr.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112765917 | |||||
| CVE-2018-9534 | 1 Google | 1 Android | 2018-12-14 | 6.8 MEDIUM | 8.8 HIGH |
| In ixheaacd_mps_getstridemap of ixheaacd_mps_parse.c there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-112857941 | |||||