CVE 列表 – 发现高风险与在野利用漏洞

聚合 NVD、CVE 及多源情报,深度解析 RCE 等高危风险。系统集成 CVSS 与 EPSS 模型,动态追踪 Exploit 资源与 PoC 公开状态,研判可利用性。结合官方补丁与修复方案,优化漏洞管理优先级,缩短响应周期,保障资产安全。

分配机构(CNA / 来源):[email protected] 移除此筛选

显示 1203711 条结果
«« 第一页 « 上一页 第 1 / 186 页 下一页 »
CVE 描述 最高 CVSS EPSS % 公开时间 更新时间
CVE-2016-5349 The high level operating systems (HLOS) was not providing sufficient memory address information to ensure that secure applications inside Qualcomm Secure Execution Environment (QSEE) only write to legitimate memory ranges related to the QSEE secure application's HLOS client. When secure applications inside Qualcomm Secure Execution Environment (QSEE) receive memory addresses from a high level operating system (HLOS) such as Linux Android, those address have previously been verified as belonging 5.5 1.00% 2017-04-06 2026-06-16
CVE-2017-8244 In core_info_read and inst_info_read in all Android releases from CAF using the Linux kernel, variable "dbg_buf", "dbg_buf->curr" and "dbg_buf->filled_size" could be modified by different threads at the same time, but they are not protected with mutex or locks. Buffer overflow is possible on race conditions. "buffer->curr" itself could also be overwritten, which means that it may point to anywhere of kernel memory (for write). 7.0 0.15% 2017-05-12 2026-06-16
CVE-2017-8245 In all Android releases from CAF using the Linux kernel, while processing a voice SVC request which is nonstandard by specifying a payload size that will overflow its own declared size, an out of bounds memory copy occurs. 7.8 0.17% 2017-05-12 2026-06-16
CVE-2017-8246 In function msm_pcm_playback_close() in all Android releases from CAF using the Linux kernel, prtd is assigned substream->runtime->private_data. Later, prtd is freed. However, prtd is not sanitized and set to NULL, resulting in a dangling pointer. There are other functions that access the same memory (substream->runtime->private_data) with a NULL check, such as msm_pcm_volume_ctl_put(), which means this freed memory could be used. 7.8 0.17% 2017-05-12 2026-06-16
CVE-2014-9960 In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API. 7.8 0.63% 2017-06-13 2026-06-16
CVE-2014-9961 In all Android releases from CAF using the Linux kernel, a vulnerability in eMMC write protection exists that can be used to bypass power-on write protection. 7.8 0.56% 2017-06-13 2026-06-16
CVE-2014-9962 In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of a DRM provisioning command. 7.8 0.60% 2017-06-13 2026-06-16
CVE-2014-9963 In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in WideVine DRM. 7.8 0.62% 2017-06-13 2026-06-16
CVE-2014-9964 In all Android releases from CAF using the Linux kernel, an integer overflow vulnerability exists in debug functionality. 7.8 0.61% 2017-06-13 2026-06-16
CVE-2014-9965 In all Android releases from CAF using the Linux kernel, a vulnerability exists in the parsing of an SCM call. 7.8 0.60% 2017-06-13 2026-06-16
CVE-2014-9966 In all Android releases from CAF using the Linux kernel, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists in Secure Display. 7.0 0.44% 2017-06-13 2026-06-16
CVE-2014-9967 In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM. 7.8 0.58% 2017-06-13 2026-06-16
CVE-2015-9020 In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory. 7.8 0.58% 2017-06-13 2026-06-16
CVE-2015-9021 In all Android releases from CAF using the Linux kernel, access control to SMEM memory was not enabled. 5.5 0.47% 2017-06-13 2026-06-16
CVE-2015-9022 In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs. 7.0 0.45% 2017-06-13 2026-06-16
CVE-2015-9023 In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API. 7.8 0.63% 2017-06-13 2026-06-16
CVE-2015-9024 In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed to QTEE applications. 5.5 0.47% 2017-06-13 2026-06-16
CVE-2015-9025 In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a QTEE application. 7.8 0.63% 2017-06-13 2026-06-16
CVE-2015-9026 In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM. 7.8 0.60% 2017-06-13 2026-06-16
CVE-2015-9027 In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM. 7.8 0.60% 2017-06-13 2026-06-16
«« 第一页 « 上一页 第 1 / 186 页 下一页 »
cvelogic Threat Intelligence