|
Google » Android » 7.1.1 : Security Vulnerabilities Published In 2018 (Gain Information)
Cpe Name: cpe:/o:google:android:7.1.1
# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2018-15835 |
200 |
|
+Info |
2018-11-30 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Android 1.0 through 9.0 has Insecure Permissions. The Android bug ID is 77286983. |
2 |
CVE-2018-9554 |
200 |
|
Bypass +Info |
2018-12-06 |
2019-01-02 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
In dumpExtractors of IMediaExtractor.cp, there is a possible disclosure of recently accessed media files due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1. Android ID: A-114770654. |
3 |
CVE-2018-9543 |
200 |
|
+Info |
2018-11-14 |
2019-10-02 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
In trim_device of f2fs_format_utils.c, it is possible that the data partition is not wiped during a factory reset. This could lead to local information disclosure after factory reset with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9. Android ID: A-112868088. |
4 |
CVE-2018-9510 |
200 |
|
+Info |
2018-10-02 |
2018-11-20 |
6.1 |
None |
Local Network |
Low |
Not required |
Complete |
None |
None |
In smp_proc_enc_info of smp_act.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-111937065 |
5 |
CVE-2018-9509 |
200 |
|
+Info |
2018-10-02 |
2018-11-20 |
6.1 |
None |
Local Network |
Low |
Not required |
Complete |
None |
None |
In smp_proc_master_id of smp_act.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-111937027 |
6 |
CVE-2018-9499 |
200 |
|
+Info |
2018-10-02 |
2018-11-20 |
4.9 |
None |
Local |
Low |
Not required |
Complete |
None |
None |
In readVector of iCrypto.cpp, there is a possible invalid read due to uninitialized data. This could lead to local information disclosure from the DRM server with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-79218474 |
7 |
CVE-2018-9489 |
200 |
|
+Info |
2018-11-06 |
2018-12-13 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
When wifi is switched, function sendNetworkStateChangeBroadcast of WifiStateMachine.java broadcasts an intent including detailed wifi network information. This could lead to information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-77286245. |
8 |
CVE-2018-9358 |
200 |
|
+Info |
2018-11-06 |
2018-12-13 |
7.8 |
None |
Remote |
Low |
Not required |
Complete |
None |
None |
In gatts_process_attribute_req of gatt_sc.cc, there is a possible read of uninitialized data due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-73172115. |
9 |
CVE-2017-13298 |
200 |
|
+Info |
2018-04-04 |
2018-05-08 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android media framework (libhavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-72117051. |
10 |
CVE-2017-13297 |
200 |
|
+Info |
2018-04-04 |
2018-05-08 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-71766721. |
11 |
CVE-2017-13296 |
200 |
|
+Info |
2018-04-04 |
2018-05-08 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-70897454. |
12 |
CVE-2017-13294 |
200 |
|
+Info |
2018-04-04 |
2018-05-08 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android framework (aosp email application). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-71814449. |
13 |
CVE-2017-13269 |
200 |
|
+Info |
2018-04-04 |
2018-05-08 |
3.3 |
None |
Local Network |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68818034. |
14 |
CVE-2017-13268 |
200 |
|
+Info |
2018-04-04 |
2018-05-08 |
3.3 |
None |
Local Network |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-67058064. |
15 |
CVE-2017-13243 |
200 |
|
+Info |
2018-02-12 |
2018-03-01 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android system (ui). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. ID: A-38258991. |
16 |
CVE-2017-13242 |
200 |
|
+Info |
2018-02-12 |
2018-03-07 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. ID: A-62672248. |
17 |
CVE-2017-13241 |
200 |
|
+Info |
2018-02-12 |
2018-03-07 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A information disclosure vulnerability in the Android media framework (libstagefright_soft_avcenc). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. ID: A-69065651. |
18 |
CVE-2017-13207 |
200 |
|
+Info |
2018-01-12 |
2018-01-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An information disclosure vulnerability in the Android media framework (stagefright mpeg4writer). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37564426. |
19 |
CVE-2017-13206 |
200 |
|
+Info |
2018-01-12 |
2018-02-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An information disclosure vulnerability in the Android media framework (aacdec). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65025048. |
20 |
CVE-2017-13205 |
200 |
|
+Info |
2018-01-12 |
2018-01-26 |
8.5 |
None |
Remote |
Low |
Not required |
Partial |
None |
Complete |
An information disclosure vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64550583. |
21 |
CVE-2017-13204 |
200 |
|
+Info |
2018-01-12 |
2018-01-25 |
8.5 |
None |
Remote |
Low |
Not required |
Partial |
None |
Complete |
An information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64380237. |
22 |
CVE-2017-13203 |
200 |
|
+Info |
2018-01-12 |
2018-01-25 |
8.5 |
None |
Remote |
Low |
Not required |
Partial |
None |
Complete |
An information disclosure vulnerability in the Android media framework (libavc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63122634. |
23 |
CVE-2017-13202 |
200 |
|
+Info |
2018-01-12 |
2018-01-25 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An information disclosure vulnerability in the Android media framework (libeffects). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-67647856. |
24 |
CVE-2017-13201 |
200 |
|
+Info |
2018-01-12 |
2018-01-25 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An information disclosure vulnerability in the Android media framework (mediadrm). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63982768. |
25 |
CVE-2017-13200 |
200 |
|
+Info |
2018-01-12 |
2018-01-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An information disclosure vulnerability in the Android media framework (av) related to id3 unsynchronization. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-63100526. |
26 |
CVE-2017-13188 |
200 |
|
+Info |
2018-01-12 |
2018-01-25 |
8.5 |
None |
Remote |
Low |
Not required |
Partial |
None |
Complete |
An information disclosure vulnerability in the Android media framework (aac). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65280786. |
27 |
CVE-2017-13187 |
200 |
|
+Info |
2018-01-12 |
2018-01-26 |
8.5 |
None |
Remote |
Low |
Not required |
Partial |
None |
Complete |
An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65034175. |
28 |
CVE-2017-13185 |
200 |
|
+Info |
2018-01-12 |
2018-01-25 |
8.5 |
None |
Remote |
Low |
Not required |
Partial |
None |
Complete |
An information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-65123471. |
29 |
CVE-2017-0846 |
200 |
|
+Info |
2018-01-12 |
2018-02-01 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An information disclosure vulnerability in the Android framework (clipboardservice). Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-64934810. |
Total number of vulnerabilities : 29
Page :
1
(This Page)
|
|