Vulnerabilidades CVE
Base de dados CVE enriquecida com CISA KEV e NVD
| CVE ID | CVSS | Severidade | KEV | Avistamentos |
|---|---|---|---|---|
| CVE-2019-9247 In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. ... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-18357 An XSS issue was discovered in Thycotic Secret Server before 10.7 (issue 2 of 2). | 6.1 | MEDIUM | — | 0 |
| CVE-2019-9249 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ... | 5.5 | MEDIUM | — | 0 |
| CVE-2019-9250 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is... | 7.5 | HIGH | — | 0 |
| CVE-2019-9251 In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed... | 5.0 | MEDIUM | — | 0 |
| CVE-2019-9252 In libavc there is a possible out of bounds read due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed ... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9253 In KeyStore, there is a possible storage of symmetric keys in the TEE instead of the strongbox due to a missing strongbox flag. This could lead to local information disclosure with System execution pr... | 4.4 | MEDIUM | — | 0 |
| CVE-2019-9256 In libmediaextractor there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is ne... | 8.8 | HIGH | — | 0 |
| CVE-2019-9257 In Bluetooth, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n... | 7.8 | HIGH | — | 0 |
| CVE-2019-9258 In wifilogd, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is... | 7.8 | HIGH | — | 0 |
| CVE-2019-9259 In the Bluetooth stack, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is n... | 6.7 | MEDIUM | — | 0 |
| CVE-2019-9260 In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction... | 7.5 | HIGH | — | 0 |
| CVE-2019-9261 In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for ... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9262 In MPEG4Extractor, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution in the media extractor with no additional execution privileges needed. U... | 8.8 | HIGH | — | 0 |
| CVE-2019-9263 In telephony, there is a possible bypass of user interaction requirements due to missing permission checks. This could lead to local escalation of privilege with no additional execution privileges nee... | 7.8 | HIGH | — | 0 |
| CVE-2019-9264 In libxaac there is a possible out of bounds read due to missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for ... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9265 In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction... | 7.5 | HIGH | — | 0 |
| CVE-2019-9266 In sensorservice, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is n... | 6.7 | MEDIUM | — | 0 |
| CVE-2011-2668 Mozilla Firefox through 1.5.0.3 has a vulnerability in processing the content-length header | 8.8 | HIGH | — | 0 |
| CVE-2019-9268 In libstagefright, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privileges needed. User... | 5.5 | MEDIUM | — | 0 |
| CVE-2019-9269 In System Settings, there is a possible permissions bypass due to a cached Linux user ID. This could lead to a local permissions bypass with no additional execution privileges needed. User interaction... | 7.3 | HIGH | — | 0 |
| CVE-2019-9272 In WiFi, there is a possible leak of WiFi state due to a permissions bypass. This could lead to a local information disclosure which could be used to determine device location with no additional execu... | 5.5 | MEDIUM | — | 0 |
| CVE-2019-9277 In the proc filesystem, there is a possible information disclosure due to log information disclosure. This could lead to local disclosure of app and browser activity with User execution privileges nee... | 3.3 | LOW | — | 0 |
| CVE-2019-9278 In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges ... | 8.8 | HIGH | — | 0 |
| CVE-2019-9279 In the wifi hotspot service, there is a possible denial of service due to a null pointer dereference. This could lead to remote denial of service with no additional execution privileges needed. User i... | 7.5 | HIGH | — | 0 |
| CVE-2019-9280 In keyguard, there is a possible escalation of privilege due to improper permission checks. This could lead to a local bypass of the keyguard under limited circumstances, with User execution privilege... | 3.3 | LOW | — | 0 |
| CVE-2019-9281 In GoogleContactsSyncAdapter, there is a possible path traversal due to improper input sanitization. This could lead to a bypass of user interaction requirements with no additional execution privilege... | 7.5 | HIGH | — | 0 |
| CVE-2019-9282 In skia, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is need... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9284 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure, with no additional privileges required. User interaction is not ne... | 7.5 | HIGH | — | 0 |
| CVE-2019-9285 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not ... | 7.5 | HIGH | — | 0 |
| CVE-2019-9286 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is... | 7.5 | HIGH | — | 0 |
| CVE-2019-9287 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ... | 5.5 | MEDIUM | — | 0 |
| CVE-2019-9288 In libhidcommand_jni, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the USB service with no additional execution privileges... | 6.8 | MEDIUM | — | 0 |
| CVE-2019-9289 In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ... | 5.5 | MEDIUM | — | 0 |
| CVE-2019-9290 In tzdata there is possible memory corruption due to a mismatch between allocation and deallocation functions. This could lead to local escalation of privilege with no additional execution privileges ... | 7.8 | HIGH | — | 0 |
| CVE-2011-2669 Mozilla Firefox prior to 3.6 has a DoS vulnerability due to an issue in the validation of certificates. | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9291 In Bluetooth, there is a possible remote code execution due to an improper memory allocation. This could lead to remote code execution in Bluetooth with no additional execution privileges needed. User... | 8.8 | HIGH | — | 0 |
| CVE-2019-9292 In the Activity Manager service, there is a possible information disclosure due to a confused deputy. This could lead to local disclosure of current foreground process with no additional execution pri... | 3.3 | LOW | — | 0 |
| CVE-2019-9293 In libstagefright, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interacti... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9294 In libstagefright, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interacti... | 6.5 | MEDIUM | — | 0 |
| CVE-2019-9295 In com.android.apps.tag, there is a possible bypass of user interaction requirements due to a missing permission check. This could lead to a to local escalation of privilege with User execution privil... | 7.8 | HIGH | — | 0 |
| CVE-2019-9296 In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed... | 5.0 | MEDIUM | — | 0 |
| CVE-2019-9297 In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo... | 8.8 | HIGH | — | 0 |
| CVE-2019-9298 In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo... | 8.8 | HIGH | — | 0 |
| CVE-2020-10578 An arbitrary file read vulnerability exists in system/controller/backend/template.php in QCMS v3.0.1. | 7.5 | HIGH | — | 0 |
| CVE-2019-9299 In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo... | 8.8 | HIGH | — | 0 |
| CVE-2019-9300 In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo... | 8.8 | HIGH | — | 0 |
| CVE-2019-9301 In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo... | 9.8 | CRITICAL | — | 0 |
| CVE-2019-9302 In libAACdec, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo... | 8.8 | HIGH | — | 0 |
| CVE-2019-9303 In libFDK, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for e... | 8.8 | HIGH | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.