| Max CVSS | 4.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-8944 | 4.3 |
The ioresources_init function in kernel/resource.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 6 and 7 (2013) devices, uses weak permissions for /proc/iomem, which allows local users to obtain sensitive information
|
28-11-2016 - 19:50 | 06-08-2016 - 10:59 | |
| CVE-2014-9895 | 4.3 |
drivers/media/media-device.c in the Linux kernel before 3.11, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize certain data structures, which allows local users to obtain sensitive information via a c
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9892 | 4.3 |
The snd_compr_tstamp function in sound/core/compress_offload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize a timestamp data structure, which allows attackers to o
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9894 | 4.3 |
drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not ensure that certain name strings end in a '\0' character, which allows attackers to obtain sensitive information via a crafted applicati
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9897 | 4.3 |
sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate certain user-space data, which allows attackers to obtain sensitive information via a crafted application, aka Android
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9896 | 4.3 |
drivers/char/adsprpc.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate parameters and return values, which allows attackers to obtain sensitive information via a crafted application,
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9898 | 4.3 |
arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate input parameters, which allows attackers to obtain sensitive information via a crafted appli
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9893 | 4.3 |
drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not properly determine the size of Gamut LUT data, which allows attackers to obtain sensitive information via a crafted application,
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9900 | 4.3 |
The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not initialize a certain data structure, which allows local users to obtain sensitive infor
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 | |
| CVE-2014-9899 | 4.3 |
drivers/usb/host/ehci-msm2.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices omits certain minimum calculations before copying data, which allows attackers to obtain sensitive information via a crafted application, aka Andr
|
28-11-2016 - 19:15 | 06-08-2016 - 10:59 |