Security Vulnerabilities - CVEs Published In June 2017
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in an IPA driver.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists while loading a firmware image.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a camera function.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, userspace-controlled parameters for flash initialization are not sanitized potentially leading to exposure of kernel memory.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a kernel driver has an off-by-one buffer over-read vulnerability.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a WLAN function due to an incorrect message length.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver potentially leading to an arbitrary memory write.
CVSS Score
5.9
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of a DRM provisioning command.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13