Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 6.0.1 vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2017-13176
In the parseURL function of URLStreamHandler, there is improper input validation of the host field. This could lead to a remote elevation of privilege that could enable bypassing user interaction requirements with no additional execution privileges needed. User interaction is nee...
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 5.1.1
Google Android 7.1.1
Google Android 8.1
890
VMScore
CVE-2017-13177
In several functions of libhevc, NEON registers are not preserved. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0,...
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 5.1.1
Google Android 7.1.1
Google Android 8.1
890
VMScore
CVE-2017-13178
In the initDecoder function of SoftAVCDec, there is a possible out-of-bounds write to mCodecCtx due to a use after free when buffer allocation fails. This could lead to remote code execution as a privileged process with no additional execution privileges needed. User interaction ...
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 7.1.1
Google Android 8.1
890
VMScore
CVE-2017-13179
In the ihevcd_allocate_static_bufs and ihevcd_create functions of SoftHEVC, there is a possible out-of-bounds write due to a use after free. Both ps_codec_obj and ps_create_op->s_ivd_create_op_t.pv_handle point to the same memory and ps_codec_obj could be freed without clearin...
Google Android 7.1.2
Google Android 6.0.1
Google Android 7.0
Google Android 8.0
Google Android 7.1.1
Google Android 8.1
641
VMScore
CVE-2017-13180
In the onQueueFilled function of SoftAVCDec, there is a possible out-of-bounds write due to a use after free if a bad header causes the decoder to get caught in a loop while another thread frees the memory it's accessing. This could lead to a local elevation of privilege ena...
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 7.1.1
Google Android 8.1
694
VMScore
CVE-2017-13186
A vulnerability in the Android media framework (libavc) related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716.
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 7.1.1
Google Android 8.1
756
VMScore
CVE-2017-13187
An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65034175.
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 5.1.1
Google Android 7.1.1
Google Android 8.1
756
VMScore
CVE-2017-13188
An information disclosure vulnerability in the Android media framework (aac). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65280786.
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 5.1.1
Google Android 7.1.1
Google Android 8.1
694
VMScore
CVE-2017-13191
In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete frame error. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation...
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 5.1.1
Google Android 7.1.1
Google Android 8.1
694
VMScore
CVE-2017-13192
In the ihevcd_parse_slice_header function of ihevcd_parse_slice_header.c a slice address of zero after the first slice could result in an infinite loop. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User...
Google Android 7.1.2
Google Android 6.0.1
Google Android 6.0
Google Android 7.0
Google Android 8.0
Google Android 5.1.1
Google Android 7.1.1
Google Android 8.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »