| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2019-1010200 |
78 |
|
Exec Code |
2019-07-23 |
2019-10-09 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Voice Builder Prior to commit c145d4604df67e6fc625992412eef0bf9a85e26b and f6660e6d8f0d1d931359d591dbdec580fef36d36 is affected by: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'). The impact is: Remote code execution with the same privileges as the servers. The component is: Two web servers in the projects expose three vulnerable endpoints that can be accessed remotely. The endpoints are defined at: - /tts: https://github.com/google/voice-builder/blob/3a449a3e8d5100ff323161c89b897f6d5ccdb6f9/merlin_model_server/api.js#L34 - /alignment: https://github.com/google/voice-builder/blob/3a449a3e8d5100ff323161c89b897f6d5ccdb6f9/festival_model_server/api.js#L28 - /tts: https://github.com/google/voice-builder/blob/3a449a3e8d5100ff323161c89b897f6d5ccdb6f9/festival_model_server/api.js#L65. The attack vector is: Attacker sends a GET request to the vulnerable endpoint with a specially formatted query parameter. The fixed version is: After commit f6660e6d8f0d1d931359d591dbdec580fef36d36. |
|
2 |
CVE-2019-16508 |
190 |
|
Overflow +Priv |
2019-10-01 |
2019-10-08 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
|
The Imagination Technologies driver for Chrome OS before R74-11895.B, R75 before R75-12105.B, and R76 before R76-12208.0.0 allows attackers to trigger an Integer Overflow and gain privileges via a malicious application. This occurs because of intentional access for the GPU process to /dev/dri/card1 and the PowerVR ioctl handler, as demonstrated by PVRSRVBridgeSyncPrimOpCreate. |
|
3 |
CVE-2019-14783 |
264 |
|
|
2019-08-08 |
2019-09-25 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
On Samsung mobile devices with N(7.x), and O(8.x), P(9.0) software, FotaAgent allows a malicious application to create privileged files. The Samsung ID is SVE-2019-14764. |
|
4 |
CVE-2019-12762 |
264 |
|
|
2019-06-06 |
2019-06-10 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
Xiaomi Mi 5s Plus devices allow attackers to trigger touchscreen anomalies via a radio signal between 198 kHz and 203 kHz, as demonstrated by a transmitter and antenna hidden just beneath the surface of a coffee-shop table, aka Ghost Touch. |
|
5 |
CVE-2019-10379 |
255 |
|
|
2019-08-07 |
2019-10-09 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
Jenkins Google Cloud Messaging Notification Plugin 1.0 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system. |
|
6 |
CVE-2019-10365 |
200 |
|
+Info |
2019-07-31 |
2019-10-09 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
Jenkins Google Kubernetes Engine Plugin 0.6.2 and earlier created a temporary file containing a temporary access token in the project workspace, where it could be accessed by users with Job/Read permission. |
|
7 |
CVE-2019-9635 |
476 |
|
DoS |
2019-04-24 |
2019-04-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file. |
|
8 |
CVE-2019-9506 |
310 |
|
|
2019-08-14 |
2019-08-28 |
4.8 |
None |
Local Network |
Low |
Not required |
Partial |
Partial |
None |
|
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing. |
|
9 |
CVE-2019-9463 |
269 |
|
Bypass |
2019-09-27 |
2019-10-03 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
|
In Platform, there is a possible bypass of user interaction requirements due to background app interception. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-113584607 |
|
10 |
CVE-2019-9462 |
125 |
|
DoS |
2019-09-27 |
2019-09-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
In Bluetooth, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-91544774 |
|
11 |
CVE-2019-9461 |
200 |
|
+Info |
2019-09-06 |
2019-09-09 |
7.8 |
None |
Remote |
Low |
Not required |
Complete |
None |
None |
|
In the Android kernel in VPN routing there is a possible information disclosure. This could lead to remote information disclosure by an adjacent network attacker with no additional execution privileges needed. User interaction is not needed for exploitation. |
|
12 |
CVE-2019-9460 |
787 |
|
|
2019-09-27 |
2019-10-02 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In mediaserver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-62535446 |
|
13 |
CVE-2019-9459 |
120 |
|
Overflow |
2019-09-27 |
2019-09-30 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
In libttspico, there is a possible OOB write due to a heap buffer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-79593569 |
|
14 |
CVE-2019-9458 |
362 |
|
|
2019-09-06 |
2019-09-09 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the video driver there is a use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. |
|
15 |
CVE-2019-9456 |
787 |
|
|
2019-09-06 |
2019-09-24 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in Pixel C USB monitor driver there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
16 |
CVE-2019-9455 |
200 |
|
+Info |
2019-09-06 |
2019-09-09 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Android kernel in the video driver there is a kernel pointer leak due to a WARN_ON statement. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. |
|
17 |
CVE-2019-9454 |
787 |
|
Mem. Corr. |
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in i2c driver there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
18 |
CVE-2019-9453 |
20 |
|
|
2019-09-06 |
2019-09-09 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Android kernel in F2FS touch driver there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation. |
|
19 |
CVE-2019-9452 |
125 |
|
|
2019-09-06 |
2019-09-09 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Android kernel in SEC_TS touch driver there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. |
|
20 |
CVE-2019-9451 |
787 |
|
|
2019-09-06 |
2019-09-10 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the touchscreen driver there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
21 |
CVE-2019-9450 |
362 |
|
Mem. Corr. |
2019-09-06 |
2019-09-10 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the FingerTipS touchscreen driver there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
22 |
CVE-2019-9449 |
125 |
|
|
2019-09-06 |
2019-09-09 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Android kernel in FingerTipS touchscreen driver there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation. |
|
23 |
CVE-2019-9448 |
787 |
|
|
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the FingerTipS touchscreen driver there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
24 |
CVE-2019-9447 |
416 |
|
|
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the FingerTipS touchscreen driver there is a possible use-after-free due to improper locking. This could lead to a local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
25 |
CVE-2019-9446 |
787 |
|
|
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the FingerTipS touchscreen driver there is a possible out of bounds write due to improper input validation. This could lead to a local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
26 |
CVE-2019-9445 |
125 |
|
|
2019-09-06 |
2019-09-09 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Android kernel in F2FS driver there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation. |
|
27 |
CVE-2019-9444 |
200 |
|
+Info |
2019-09-06 |
2019-09-09 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with system execution privileges needed. User interaction is not needed for exploitation. |
|
28 |
CVE-2019-9443 |
264 |
|
Bypass |
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the vl53L0 driver there is a possible out of bounds write due to a permissions bypass. This could lead to local escalation of privilege due to a set_fs() call without restoring the previous limit with System execution privileges needed. User interaction is not needed for exploitation. |
|
29 |
CVE-2019-9442 |
416 |
|
Mem. Corr. |
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the mnh driver there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System privileges required. User interaction is not needed for exploitation. |
|
30 |
CVE-2019-9441 |
787 |
|
|
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the mnh driver there is a possible out of bounds write due to improper input validation. This could lead to escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
31 |
CVE-2019-9440 |
610 |
|
|
2019-09-27 |
2019-10-04 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In AOSP Email, there is a possible information disclosure due to a confused deputy. This could lead to local disclosure of the Email app's protected files with User execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-37637796 |
|
32 |
CVE-2019-9438 |
610 |
|
|
2019-09-27 |
2019-10-03 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In the Package Manager service, there is a possible information disclosure due to a confused deputy. This could lead to local disclosure of information about installed packages for other users with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-77821568 |
|
33 |
CVE-2019-9436 |
264 |
|
Bypass |
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in the bootloader there is a possible secure boot bypass. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. |
|
34 |
CVE-2019-9435 |
125 |
|
|
2019-09-27 |
2019-09-30 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80146682 |
|
35 |
CVE-2019-9434 |
125 |
|
|
2019-09-27 |
2019-09-30 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with heap information written to the log with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80432895 |
|
36 |
CVE-2019-9433 |
20 |
|
|
2019-09-27 |
2019-09-30 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
In libvpx, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80479354 |
|
37 |
CVE-2019-9432 |
125 |
|
|
2019-09-27 |
2019-09-30 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
In Bluetooth, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure in the Bluetooth server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80546108 |
|
38 |
CVE-2019-9431 |
125 |
|
|
2019-09-27 |
2019-09-30 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
|
In Bluetooth, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with heap information written to the log with System execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109755179 |
|
39 |
CVE-2019-9430 |
476 |
|
DoS |
2019-09-27 |
2019-09-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
In Bluetooth, there is a possible null pointer dereference due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-109838296 |
|
40 |
CVE-2019-9429 |
787 |
|
Mem. Corr. |
2019-09-27 |
2019-10-03 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In profman, there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-110035108 |
|
41 |
CVE-2019-9428 |
200 |
|
+Info |
2019-09-27 |
2019-10-02 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
In the Framework, it is possible to set up BROWSEABLE intents to take over certain URLs. This could lead to remote information disclosure of sensitive URLs with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-110150807 |
|
42 |
CVE-2019-9427 |
416 |
|
|
2019-09-27 |
2019-10-01 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
In Bluetooth, there is a possible information disclosure due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-110166350 |
|
43 |
CVE-2019-9426 |
787 |
|
|
2019-09-06 |
2019-09-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In the Android kernel in Bluetooth there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. |
|
44 |
CVE-2019-9425 |
125 |
|
DoS |
2019-09-27 |
2019-09-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-110846194 |
|
45 |
CVE-2019-9424 |
200 |
|
+Info |
2019-09-27 |
2019-09-30 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
In the Screen Lock, there is a possible information disclosure due to an unusual root cause. In certain circumstances, the setting to hide the unlock pattern can be ignored. Product: AndroidVersions: Android-10Android ID: A-110941092 |
|
46 |
CVE-2019-9423 |
787 |
|
|
2019-09-27 |
2019-10-03 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
In opencv calls that use libpng, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges required. User interaction is not required for exploitation. Product: AndroidVersions: Android-10Android ID: A-110986616 |
|
47 |
CVE-2019-9422 |
125 |
|
|
2019-09-27 |
2019-09-30 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111214766 |
|
48 |
CVE-2019-9421 |
125 |
|
Overflow |
2019-09-27 |
2019-10-02 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
In libandroidfw, there is a possible OOB read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111215250 |
|
49 |
CVE-2019-9420 |
190 |
|
DoS Overflow |
2019-09-27 |
2019-10-01 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In libhevc, there is a possible out of bounds read due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111272481 |
|
50 |
CVE-2019-9419 |
125 |
|
|
2019-09-27 |
2019-09-30 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111407544 |
