Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.5

    MEDIUM
    CVE-2014-9895

    drivers/media/media-device.c in the Linux kernel before 3.11, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize certain data structures, which allows local users to obtain sensitive information via a crafte... Read more

    Affected Products : android linux_kernel
    • EPSS Score: %0.09
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 5.5

    MEDIUM
    CVE-2014-9894

    drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not ensure that certain name strings end in a '\0' character, which allows attackers to obtain sensitive information via a crafted application, a... Read more

    Affected Products : android
    • EPSS Score: %0.09
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 5.5

    MEDIUM
    CVE-2014-9893

    drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not properly determine the size of Gamut LUT data, which allows attackers to obtain sensitive information via a crafted application, aka A... Read more

    Affected Products : android
    • EPSS Score: %0.09
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 5.5

    MEDIUM
    CVE-2014-9892

    The snd_compr_tstamp function in sound/core/compress_offload.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not properly initialize a timestamp data structure, which allows attackers to obtain... Read more

    Affected Products : android linux_kernel
    • EPSS Score: %0.16
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-9891

    drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate certain buffer addresses, which allows attackers to gain privileges via a crafted application that makes an ioctl call, aka Android interna... Read more

    Affected Products : android
    • EPSS Score: %0.06
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-9890

    Off-by-one error in drivers/media/platform/msm/camera_v2/sensor/cci/msm_cci.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges via a crafted application that sends an I2C command, ... Read more

    Affected Products : android
    • EPSS Score: %0.06
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9889

    drivers/media/platform/msm/camera_v2/pproc/cpp/msm_cpp.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate CPP frame messages, which allows attackers to gain privileges via a crafted application, aka Android inte... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9888

    arch/arm/mm/dma-mapping.c in the Linux kernel before 3.13 on ARM platforms, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not prevent executable DMA mappings, which might allow local users to gain privileges via a crafted appl... Read more

    Affected Products : linux_kernel nexus_7 nexus_5
    • EPSS Score: %0.04
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.3

    HIGH
    CVE-2014-9887

    drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate certain length values, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28804057 ... Read more

    Affected Products : android
    • EPSS Score: %0.06
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9886

    arch/arm/mach-msm/qdsp6v2/ultrasound/usf.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not properly validate input parameters, which allows attackers to gain privileges via a crafted application, aka Androi... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9885

    Format string vulnerability in drivers/thermal/qpnp-adc-tm.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices allows attackers to gain privileges via a crafted application that provides format string specifiers in a name, aka And... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9884

    drivers/misc/qseecom.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices does not validate certain pointers, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28769920 and Q... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9883

    Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices allows attackers to gain privileges or obtain sensitive information via a crafted application, aka Android internal bu... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9882

    Buffer overflow in drivers/media/radio/radio-iris.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28769546 and Qualcomm internal bu... Read more

    Affected Products : android
    • EPSS Score: %0.09
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9881

    drivers/media/radio/radio-iris.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices uses an incorrect integer data type, which allows attackers to gain privileges or cause a denial of service (buffer overflow) via a crafted ... Read more

    Affected Products : android
    • EPSS Score: %0.07
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9880

    drivers/video/msm/vidc/common/enc/venc.c in the Qualcomm components in Android before 2016-08-05 on Nexus 7 (2013) devices does not validate VEN_IOCTL_GET_SEQUENCE_HDR ioctl calls, which allows attackers to gain privileges via a crafted application, aka A... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9879

    The mdss mdp3 driver in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not validate user-space data, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28769221 and Qualcomm internal... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9878

    drivers/mmc/card/mmc_block_test.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 devices does not reject kernel-space buffer addresses, which allows attackers to gain privileges via a crafted application, aka Android internal bug 28769... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9877

    drivers/media/platform/msm/camera_v2/sensor/actuator/msm_actuator.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices mishandles a user-space pointer, which allows attackers to gain privileges via a crafted applicatio... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2014-9876

    drivers/char/diag/diagfwd.c in the Qualcomm components in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices mishandles certain integer values, which allows attackers to gain privileges via a crafted application, aka Android internal bu... Read more

    Affected Products : android
    • EPSS Score: %0.08
    • Published: Aug. 06, 2016
    • Modified: Apr. 12, 2025
Showing 20 of 291385 Results