National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:google:android:2.2.2
There are 627 matching records.
Displaying matches 321 through 340.
Vuln ID Summary CVSS Severity
CVE-2016-3848

The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28919417.

Published: August 05, 2016; 04:59:39 PM -04:00
V3: 7.0 HIGH
V2: 7.6 HIGH
CVE-2016-3847

The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28871433.

Published: August 05, 2016; 04:59:38 PM -04:00
V3: 7.8 HIGH
V2: 6.9 MEDIUM
CVE-2016-3846

The Serial Peripheral Interface driver in Android before 2016-08-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 28817378.

Published: August 05, 2016; 04:59:37 PM -04:00
V3: 7.0 HIGH
V2: 7.6 HIGH
CVE-2016-3845

The video driver in the kernel in Android before 2016-08-05 on Nexus 5 devices allows attackers to gain privileges via a crafted application, aka internal bug 28399876.

Published: August 05, 2016; 04:59:36 PM -04:00
V3: 7.8 HIGH
V2: 9.3 HIGH
CVE-2016-3844

mediaserver in Android before 2016-08-05 on Nexus 9 and Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28299517.

Published: August 05, 2016; 04:59:34 PM -04:00
V3: 7.8 HIGH
V2: 9.3 HIGH
CVE-2016-3843

Android before 2016-08-05 does not properly restrict code execution in a kernel context, which allows attackers to gain privileges via a crafted application, as demonstrated by the kernel performance subsystem and the Qualcomm performance component, aka Android internal bugs 28086229 and 29119870 and Qualcomm internal bug CR1011071.

Published: August 05, 2016; 04:59:34 PM -04:00
V3: 7.8 HIGH
V2: 9.3 HIGH
CVE-2016-3842

The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28377352 and Qualcomm internal bug CR1002974.

Published: August 05, 2016; 04:59:32 PM -04:00
V3: 7.8 HIGH
V2: 9.3 HIGH
CVE-2016-3827

codecs/hevcdec/SoftHEVC.cpp in libstagefright in mediaserver in Android 6.0.1 before 2016-08-01 mishandles decoder errors, which allows remote attackers to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28816956.

Published: August 05, 2016; 04:59:16 PM -04:00
V3: 5.5 MEDIUM
V2: 7.1 HIGH
CVE-2016-2504

The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026365 and Qualcomm internal bug CR1002974.

Published: August 05, 2016; 04:59:05 PM -04:00
V3: 7.8 HIGH
V2: 6.9 MEDIUM
CVE-2014-9902

Buffer overflow in CORE/SYS/legacy/src/utils/src/dot11f.c in the Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices allows remote attackers to execute arbitrary code via a crafted Information Element (IE) in an 802.11 management frame, aka Android internal bug 28668638 and Qualcomm internal bugs CR553937 and CR553941.

Published: August 05, 2016; 04:59:02 PM -04:00
V3: 9.8 CRITICAL
V2: 10.0 HIGH
CVE-2014-9901

The Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices makes incorrect snprintf calls, which allows remote attackers to cause a denial of service (device hang or reboot) via crafted frames, aka Android internal bug 28670333 and Qualcomm internal bug CR548711.

Published: August 05, 2016; 04:59:00 PM -04:00
V3: 7.5 HIGH
V2: 7.8 HIGH
CVE-2016-3816

The MediaTek display driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28402240.

Published: July 10, 2016; 10:00:39 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3815

The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28522274.

Published: July 10, 2016; 10:00:38 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3814

The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28193342.

Published: July 10, 2016; 10:00:37 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3813

The Qualcomm USB driver in Android before 2016-07-05 on Nexus 5, 5X, 6, and 6P devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28172322 and Qualcomm internal bug CR1010222.

Published: July 10, 2016; 10:00:36 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3812

The MediaTek video codec driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28174833 and MediaTek internal bug ALPS02688832.

Published: July 10, 2016; 10:00:35 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3811

The kernel video driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28447556.

Published: July 10, 2016; 10:00:34 PM -04:00
V3: 7.8 HIGH
V2: 9.3 HIGH
CVE-2016-3810

The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28175522 and MediaTek internal bug ALPS02694389.

Published: July 10, 2016; 10:00:34 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3809

The networking component in Android before 2016-07-05 on Android One, Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 7 (2013), Nexus 9, Nexus Player, and Pixel C devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 27532522.

Published: July 10, 2016; 10:00:33 PM -04:00
V3: 5.5 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-3808

The serial peripheral interface driver in Android before 2016-07-05 on Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28430009.

Published: July 10, 2016; 10:00:32 PM -04:00
V3: 7.8 HIGH
V2: 9.3 HIGH