codecat007

166 exploits Active since May 2014
CVE-2017-13255 GITHUB HIGH c WORKING POC
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via Out-of-bounds Write in sdp_server.c
In process_service_attr_req of sdp_server.c, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68776054.
8 stars
CVSS 8.8
CVE-2017-13256 GITHUB HIGH c WORKING POC
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via Out-of-bounds Write in sdp_server.cc
In process_service_search_attr_req of sdp_server.cc, there is an out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68817966.
8 stars
CVSS 8.8
CVE-2017-13266 GITHUB CRITICAL c WORKING POC
Android 5.1.1-8.1 - Remote Code Execution via Missing Bounds Check in avrc_pars_vendor_cmd
In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-69478941.
8 stars
CVSS 9.8
CVE-2017-13267 GITHUB CRITICAL c WORKING POC
Android 6.0-8.1 - Remote Escalation of Privilege via Missing Bounds Check in avrc_pars_vendor_cmd
In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible stack corruption due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-69479009.
8 stars
CVSS 9.8
CVE-2018-9356 GITHUB CRITICAL c WORKING POC
Android - Remote Code Execution via Double Free in bnep_data_ind
In bnep_data_ind of bnep_main.c, there is a possible remote code execution due to a double free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74950468.
8 stars
CVSS 9.8
CVE-2018-9357 GITHUB HIGH c WORKING POC
Android - Out-of-bounds Write in BNEP_Write
In BNEP_Write of bnep_api.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74947856.
8 stars
CVSS 7.8
CVE-2018-9358 GITHUB HIGH c WORKING POC
Android - Out-of-bounds Read in Bluetooth GATT Attribute Processing
In gatts_process_attribute_req of gatt_sc.cc, there is a possible read of uninitialized data due to a missing bounds check. This could lead to remote information disclosure in the Bluetooth process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-73172115.
8 stars
CVSS 7.5
CVE-2018-9359 GITHUB HIGH c WORKING POC
Android - Out-of-bounds Read in l2c_main.cc
In process_l2cap_cmd of l2c_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74196706.
8 stars
CVSS 7.5
CVE-2018-9360 GITHUB HIGH c WORKING POC
Android - Out-of-bounds Read in l2c_main.cc
In process_l2cap_cmd of l2c_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74201143.
8 stars
CVSS 7.5
CVE-2018-9361 GITHUB HIGH c WORKING POC
Android - Out-of-bounds Read in l2c_main.cc
In process_l2cap_cmd of l2c_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-6.0 Android-6.0.1 Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android ID: A-74202041.
8 stars
CVSS 7.5
CVE-2018-9365 GITHUB HIGH c WORKING POC
Android - Out-of-bounds Read in smp_data_received
In smp_data_received of smp_l2c.cc, there is a possible out of bounds read followed by code execution due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.
8 stars
CVSS 8.8
CVE-2018-9381 GITHUB HIGH c WORKING POC
Android - Information Disclosure via Uninitialized Data in gatts_process_read_by_type_req
In gatts_process_read_by_type_req of gatt_sr.c, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
8 stars
CVSS 7.5
CVE-2016-5346 GITHUB MEDIUM c WORKING POC
Google Android < 7.0 - Information Disclosure via AF_MSM_IPC Socket Accept System Call
An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_MSM_IPC sockets, which could let a local malicious user obtain sensitive information (Android Bug ID A-32551280).
8 stars
CVSS 5.5
CVE-2016-6700 GITHUB HIGH c WRITEUP
Android < 4.4.4, 5.0.x < 5.0.2, 5.1.x < 5.1.1 - Elevation of Privilege via libzipfile
An elevation of privilege vulnerability in libzipfile in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Android ID: A-30916186.
8 stars
CVSS 7.8
CVE-2016-6702 GITHUB HIGH c WRITEUP
Android < 4.4.4, 5.0.x < 5.0.2, 5.1.x < 5.1.1 - Remote Code Execution in libjpeg
A remote code execution vulnerability in libjpeg in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable an attacker using a specially crafted file to execute arbitrary code in the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses libjpeg. Android ID: A-30259087.
8 stars
CVSS 7.8
CVE-2016-6762 GITHUB HIGH c SUSPICIOUS
Android 5.0.2 5.1.1 6.0 6.0.1 7.0 - Local Privilege Escalation via libziparchive
An elevation of privilege vulnerability in the libziparchive library could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0. Android ID: A-31251826.
8 stars
CVSS 7.8
CVE-2017-0475 GITHUB HIGH c SUSPICIOUS
Android 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1 - Local Privilege Escalation via Recovery Verifier
An elevation of privilege vulnerability in the recovery verifier could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1. Android ID: A-31914369.
8 stars
CVSS 7.8
CVE-2017-0497 GITHUB MEDIUM c SUSPICIOUS
Android 7.0, 7.1.1 - Denial of Service via Mediaserver Crafted File
A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as Moderate because it requires an uncommon device configuration. Product: Android. Versions: 7.0, 7.1.1. Android ID: A-33300701.
8 stars
CVSS 4.7
CVE-2017-0548 GITHUB MEDIUM c SUSPICIOUS
Android 7.0, 7.1.1 - Denial of Service via Crafted File in libskia
A remote denial of service vulnerability in libskia could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the possibility of remote denial of service. Product: Android. Versions: 7.0, 7.1.1. Android ID: A-33251605.
8 stars
CVSS 5.5
CVE-2017-0678 GITHUB HIGH c WRITEUP
Android 7.0-7.1.2 - Remote Code Execution in Media Framework
A remote code execution vulnerability in the Android media framework. Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-36576151.
8 stars
CVSS 7.8
CVE-2017-0691 GITHUB MEDIUM c WORKING POC
Android 7.0-7.1.2 - Denial of Service in Media Framework
A denial of service vulnerability in the Android media framework. Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-36724453.
8 stars
CVSS 5.5
CVE-2017-0700 GITHUB HIGH c WORKING POC
Android 7.1.1-7.1.2 - Remote Code Execution in System UI
A remote code execution vulnerability in the Android system ui. Product: Android. Versions: 7.1.1, 7.1.2. Android ID: A-35639138.
8 stars
CVSS 7.8
CVE-2017-0714 GITHUB HIGH c WRITEUP
Android 4.4.4 5.0.2 5.1.1 6.0 6.0.1 7.0 7.1.1 7.1.2 - Remote Code Execution in H263 Decoder
A remote code execution vulnerability in the Android media framework (h263 decoder). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36492637.
8 stars
CVSS 7.8
CVE-2017-0718 GITHUB HIGH c WRITEUP
Android 6.0 6.0.1 7.0 7.1.1 7.1.2 - Remote Code Execution in MPEG2 Decoder
A remote code execution vulnerability in the Android media framework (mpeg2 decoder). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37273547.
8 stars
CVSS 7.8
CVE-2017-13281 GITHUB CRITICAL c WORKING POC
Android 8.0 8.1 - Remote Code Execution via Stack Buffer Overflow in avrc_pars_browsing_cmd
In avrc_pars_browsing_cmd of avrc_pars_tg.cc, there is a possible stack buffer overflow due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-71603262.
8 stars
CVSS 9.8