Google: >> Android >> 2.3.5 Security Vulnerabilities
The MessageStatusReceiver service in the AndroidManifest.XML in Android 5.1.1 and earlier allows local users to alter sent/received statuses of SMS and MMS messages without the associated "WRITE_SMS" permission.
CVSS Score
5.5
EPSS Score
0.0
Published
2017-06-27
In all Android releases from CAF using the Linux kernel, libtomcrypt was updated.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, some regions of memory were not protected during boot.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, some validation of secure applications was not being performed.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, there was an issue related to RPMB processing.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, HLOS can overwite secure memory or read contents of the keystore.
CVSS Score
7.1
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, an integer underflow leading to buffer overflow vulnerability exists in a syscall handler.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, 3rd party TEEs have more privilege than intended.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a syscall handler.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-06-13
In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-13