» 2018 » 1월

CVE-2018-5652

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2018-5652

An issue was discovered in the dark-mode plugin 1.6 for WordPress. XSS exists via the wp-admin/profile.php dark_mode_end parameter.

Source: CVE-2018-5652

CVE-2017-13220

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13220

An elevation of privilege vulnerability in the Upstream kernel bluez. Product: Android. Versions: Android kernel. Android ID: A-63527053.

Source: CVE-2017-13220

CVE-2017-13226

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13226

An elevation of privilege vulnerability in the MediaTek mtk. Product: Android. Versions: Android kernel. Android ID: A-32591194. References: M-ALPS03149184.

Source: CVE-2017-13226

CVE-2017-13222

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13222

An information disclosure vulnerability in the Upstream kernel kernel. Product: Android. Versions: Android kernel. Android ID: A-38159576.

Source: CVE-2017-13222

CVE-2017-13225

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13225

In libMtkOmxVdec.so there is a possible heap buffer overflow. This could lead to a remote elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38308024. References: M-ALPS03495789.

Source: CVE-2017-13225

CVE-2017-13219

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13219

A denial of service vulnerability in the Upstream kernel synaptics touchscreen controller. Product: Android. Versions: Android kernel. Android ID: A-62800865.

Source: CVE-2017-13219

CVE-2017-13221

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13221

An elevation of privilege vulnerability in the Upstream kernel wifi driver. Product: Android. Versions: Android kernel. Android ID: A-64709938.

Source: CVE-2017-13221

CVE-2017-13194

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13194

A vulnerability in the Android media framework (libvpx) related to odd frame width. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-64710201.

Source: CVE-2017-13194

CVE-2017-13199

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13199

In Bitmap.ccp if Bitmap.nativeCreate fails an out of memory exception is not thrown leading to a java.io.IOException later on. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-33846679.

Source: CVE-2017-13199

CVE-2017-13198

Posted on 2018년 1월 13일2018년 1월 13일 by admin

CVE-2017-13198

A vulnerability in the Android media framework (ex) related to composition of frames lacking a color map. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68399117.

Source: CVE-2017-13198