Security Vulnerabilities - CVEs Published In June 2017
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WideVine DRM.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in debug functionality.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of an SCM call.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists in Secure Display.
CVSS Score
7.0
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, access control to SMEM memory was not enabled.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs.
CVSS Score
7.0
EPSS Score
0.0
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed to QTEE applications.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13