Skip to main content
CVE-2019-0149 MEDIUM PATCH This Month

Insufficient input validation in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 2.8.43 may allow an authenticated user to potentially enable a denial of service via local. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Ethernet Controller X710 Tm4 Firmware Ethernet Controller X710 At2 Firmware Ethernet Controller Xxv710 Am2 Firmware +4
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-0148 MEDIUM PATCH This Month

Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable a denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Ethernet Controller X710 Tm4 Firmware Ethernet Controller X710 At2 Firmware Ethernet Controller Xxv710 Am2 Firmware +4
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-0147 MEDIUM PATCH This Month

Insufficient input validation in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable a denial of service via local. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Ethernet Controller X710 Tm4 Firmware Ethernet Controller X710 At2 Firmware Ethernet Controller Xxv710 Am2 Firmware +4
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-0146 MEDIUM PATCH This Month

Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 2.8.43 may allow an authenticated user to potentially enable a denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Ethernet Controller X710 Tm4 Firmware Ethernet Controller X710 At2 Firmware Ethernet Controller Xxv710 Am2 Firmware +4
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-0143 MEDIUM PATCH This Month

Unhandled exception in Kernel-mode drivers for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable a denial of service via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Denial Of Service Intel Ethernet Controller X710 Tm4 Firmware Ethernet Controller X710 At2 Firmware Ethernet Controller Xxv710 Am2 Firmware +4
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15743 MEDIUM This Month

The Sony Xperia Touch Android device with a build fingerprint of Sony/blanc_windy/blanc_windy:7.0/LOIRE-SMART-BLANC-1.0.0-170530-0834/1:user/dev-keys contains a pre-installed app with a package name. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Google Xperia Touch Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15475 MEDIUM This Month

The Xiaomi Mi A3 Android device with a build fingerprint of xiaomi/onc_eea/onc:9/PKQ1.181021.001/V10.2.8.0.PFLEUXM:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Google Qualcomm A3 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15474 MEDIUM This Month

The Xiaomi Cepheus Android device with a build fingerprint of Xiaomi/cepheus/cepheus:9/PKQ1.181121.001/V10.2.6.0.PFAMIXM:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Google Qualcomm Cepheus Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15473 MEDIUM This Month

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/jasmine/jasmine_sprout:9/PKQ1.180904.001/V10.0.2.0.PDIMIFJ:user/release-keys contains a pre-installed app with a package name. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Google Qualcomm A2 Lite Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15472 MEDIUM This Month

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisy_sprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Google Qualcomm A2 Lite Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15471 MEDIUM This Month

The Xiaomi Mi Mix 2S Android device with a build fingerprint of Xiaomi/polaris/polaris:8.0.0/OPR1.170623.032/V9.5.19.0.ODGMIFA:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Qualcomm Information Disclosure Mix 2S Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15470 MEDIUM This Month

The Xiaomi Redmi Note 6 Pro Android device with a build fingerprint of xiaomi/tulip/tulip:8.1.0/OPM1.171019.011/V10.2.2.0.OEKMIXM:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Qualcomm Information Disclosure Redmi Note 6 Pro Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15469 MEDIUM This Month

The Xiaomi Mi Pad 4 Android device with a build fingerprint of Xiaomi/clover/clover:8.1.0/OPM1.171019.019/V9.6.26.0.ODJCNFD:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Qualcomm Information Disclosure Pad 4 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15468 MEDIUM This Month

The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisy_sprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Google A2 Lite Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15431 MEDIUM This Month

The Evercoss U50A Android device with a build fingerprint of EVERCOSS/U50A./EVERCOSS:7.0/NRD90M/1499911028:eng/test-keys contains a pre-installed app with a package name of com.qiku.cleaner app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure U50A Max Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15430 MEDIUM This Month

The Bluboo D3 Pro Android device with a build fingerprint of BLUBOO/Bluboo_D2_Pro/Bluboo_D2_Pro:7.0/NRD90M/1510370501:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Bluboo D3 Pro Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15392 MEDIUM This Month

The Asus ZenFone 4 Selfie Android device with a build fingerprint of Android/sdm660_64/sdm660_64:8.1.0/OPM1/14.2016.1802.247-20180419:user/release-keys contains a pre-installed app with a package. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Zenfone 4 Selfie Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15391 MEDIUM This Month

The Asus ZenFone 4 Selfie Android device with a build fingerprint of asus/WW_Phone/ASUS_X00LD_1:8.1.0/OPM1.171019.011/15.0400.1809.405-0:user/release-keys contains a pre-installed app with a package. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Zenfone 4 Selfie Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15390 MEDIUM This Month

The Haier G8 Android device with a build fingerprint of Haier/HM-G559-FL/G8:8.1.0/O11019/1522294799:user/release-keys contains a pre-installed app with a package name of com.qiku.service.container. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Haier G8 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15386 MEDIUM This Month

The Lava Z60s Android device with a build fingerprint of LAVA/Z60s/Z60s:8.1.0/O11019/1530331229:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Authentication Bypass Mediatek Google Z60S Firmware
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2019-15385 MEDIUM This Month

The Infinix Note 5 Android device with a build fingerprint of Infinix/H633B/Infinix-X604_sprout:8.1.0/O11019/L-IN-180206V64:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Note 5 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15384 MEDIUM This Month

The Elephone A4 Android device with a build fingerprint of Elephone/A4/A4:8.1.0/O11019/20180530.143559:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure A4 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15383 MEDIUM This Month

The Allview X5 Android device with a build fingerprint of ALLVIEW/X5_Soul_Mini/X5_Soul_Mini:8.1.0/O11019/1522468763:userdebug/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Soul X5 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15382 MEDIUM This Month

The Cubot Nova Android device with a build fingerprint of CUBOT/CUBOT_NOVA/CUBOT_NOVA:8.1.0/O11019/1527060122:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Nova Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15381 MEDIUM This Month

The BQ 5515L Android device with a build fingerprint of BQru/BQru-5515L/BQru-5515L:8.1.0/O11019/20180409.195525:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure 5515L Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15380 MEDIUM This Month

The Fly Photo Pro Android device with a build fingerprint of Fly/PhotoPro/Photo_Pro:8.1.0/O11019/1528117003:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Photo Pro Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15379 MEDIUM This Month

The Walton Primo G3 Android device with a build fingerprint of WALTON/Primo_GM3/Primo_GM3:8.1.0/O11019/1522737198:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Primo G3 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15378 MEDIUM This Month

The Panasonic Eluga Ray 600 Android device with a build fingerprint of Panasonic/ELUGA_Ray_600/ELUGA_Ray_600:8.1.0/O11019/1532692680:user/release-keys contains a pre-installed app with a package name. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Eluga Ray 600 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15377 MEDIUM This Month

The Cherry Flare S7 Android device with a build fingerprint of Cherry_Mobile/Flare_S7_Deluxe/Flare_S7_Deluxe:8.1.0/O11019/1533920920:user/release-keys contains a pre-installed app with a package name. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Flare S7 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15376 MEDIUM This Month

The Panasonic Eluga Ray 530 Android device with a build fingerprint of Panasonic/ELUGA_Ray_530/ELUGA_Ray_530:8.1.0/O11019/1531828974:user/release-keys contains a pre-installed app with a package name. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Eluga Ray 530 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15375 MEDIUM This Month

The Haier G8 Android device with a build fingerprint of Haier/HM-G559-FL/G8:8.1.0/O11019/1522294799:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure G8 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15374 MEDIUM This Month

The Lava Iris 88 Lite Android device with a build fingerprint of LAVA/iris88_lite/iris88_lite:8.1.0/O11019/1536323070:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Iris 88 Lite Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15373 MEDIUM This Month

The Symphony i95 Lite Android device with a build fingerprint of LAVA/iris88_lite/iris88_lite:8.1.0/O11019/1536323070:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure I95 Lite Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15372 MEDIUM This Month

The Hisense F17 Android device with a build fingerprint of Hisense/F17_4G/HS6739MT:8.1.0/O11019/Hisense_F17_4G_00_S01:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Infinity F17 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15371 MEDIUM This Month

The Symphony G100 Android device with a build fingerprint of Symphony/G100/G100:8.1.0/O11019/1530618779:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure G100 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15370 MEDIUM This Month

The Haier G8 Android device with a build fingerprint of Haier/HM-G559-FL/G8:8.1.0/O11019/1526527761:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Haier G8 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15369 MEDIUM This Month

The Lava Z61 Turbo Android device with a build fingerprint of LAVA/Z61_Turbo/Z61_Turbo:8.1.0/O11019/1536917928:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Z61 Turbo Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15368 MEDIUM This Month

The Coolpad 1851 Android device with a build fingerprint of Coolpad/android/android:8.1.0/O11019/1534834761:userdebug/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Mega 5 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15367 MEDIUM This Month

The Haier P10 Android device with a build fingerprint of Haier/P10/P10:8.1.0/O11019/1532662449:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure P10 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15366 MEDIUM This Month

The Infinix Note 5 Android device with a build fingerprint of Infinix/H633IJL/Infinix-X604_sprout:8.1.0/O11019/IJL-180531V181:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Note 5 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15365 MEDIUM This Month

The Lava Z92 Android device with a build fingerprint of LAVA/Z92/Z92:8.1.0/O11019/1535088037:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Z92 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15364 MEDIUM This Month

The Dexp BL250 Android device with a build fingerprint of DEXP/BL250/BL250:8.1.0/O11019/1530858027:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Bl250 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15363 MEDIUM This Month

The Leagoo Power 5 Android device with a build fingerprint of LEAGOO/Power_5/Power_5:8.1.0/O11019/1532686195:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Power 5 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15362 MEDIUM This Month

The Lava Iris 88 Go Android device with a build fingerprint of LAVA/iris88_go/iris88_go:8.1.0/O11019/1538188945:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Iris 88 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15361 MEDIUM This Month

The Infinix Note 5 Android device with a build fingerprint of Infinix/H632C/Infinix-X605_sprout:8.1.0/O11019/CE-180914V59:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Note 5 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15360 MEDIUM This Month

The Hisense U965 Android device with a build fingerprint of Hisense/U965_4G_10/HS6739MT:8.1.0/O11019/Hisense_U965_4G_10_S01:user/release-keys contains a pre-installed app with a package name of. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Infinity U965 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15359 MEDIUM This Month

The Haier A6 Android device with a build fingerprint of Haier/A6/A6:8.1.0/O11019/1534219877:userdebug/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure A6 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15358 MEDIUM This Month

The Dexp Z250 Android device with a build fingerprint of DEXP/Z250/Z250:8.1.0/O11019/1531130719:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Z250 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15357 MEDIUM This Month

The Advan i6A Android device with a build fingerprint of ADVAN/i6A/i6A:8.1.0/O11019/1523602705:userdebug/test-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure I6A Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-15356 MEDIUM This Month

The Lava Flair Z1 Android device with a build fingerprint of LAVA/Z1/Z1:8.1.0/O11019/1536680131:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Google Mediatek Information Disclosure Flair Z1 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.3%
Prev Page 4 of 5 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy