📦

fire_os

Vendor: amazon

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 19 Total Indexed

Avg. EPSS 0.24% Exploit Prob.

Latest CVE CVE-2024-27350 Feb 26

Security Vulnerability Index

Page 1 / 2

5.9 CVSS

CVE-2024-27350

Amazon Fire OS 7 before 7.6.6.9 and 8 before 8.1.0.3 allows Fire TV applications to establish local ADB (Android Debug Bridge) connections. NOTE: some third parties dispute whether this has security relevance, because an ADB connection is only possible after the (non-default) ADB Debugging option is enabled, and after the initiator of that specific connection attempt has been approved via a full-screen prompt.

EPSS: 0.06%

Severity: MEDIUM

Feb 26, 2024

7.4 CVSS

CVE-2019-7399

Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages.

EPSS: 0.24%

Severity: HIGH

Feb 17, 2019

9.8 CVSS

CVE-2015-7292

Stack-based buffer overflow in the havok_write function in drivers/staging/havok/havok.c in Amazon Fire OS before 2016-01-15 allows attackers to cause a denial of service (panic) or possibly have unspecified other impact via a long string to /dev/hv.

EPSS: 0.41%

Severity: CRITICAL

Apr 10, 2017

Displaying 3 of 19 Total Entries

1 2

Total 2 Sections