Android SystemUI Information Disclosure Vulnerability

Android is a cell phone operating system based on the Linux open kernel. SystemUI in versions prior to Android 5.1.1 LMY48Z, 6.0 2015-12-01 and 6.0 2015-12-01 has a security vulnerability in its implementation, which can be exploited by remote attackers to read screenshots and then elevate...

Android SystemUI Elevation of Privilege Vulnerability

Android is a cell phone operating system based on the Linux open kernel. Android versions prior to 5.1.1 LMY48Z and 6.0 2015-12-01, SystemUI has a security vulnerability in its implementation, which can be exploited by remote attackers to elevate privileges via a constructed application...

CVE-2015-6630

SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to read screenshots and consequently gain privileges via a crafted application, aka internal bug 19121797...

CVE-2015-6621

SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23909438...

Code injection

SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to read screenshots and consequently gain privileges via a crafted application, aka internal bug 19121797...

Code injection

SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23909438...

CVE-2015-6630

CVE-2015-6630 affects Android SystemUI. The issue allows a crafted application to read screenshots and elevate privileges in affected devices. Affected software: SystemUI on Android 5.x before 5.1.1 LMY48Z and Android 6.0 before 2015-12-01. Root cause: information disclosure enabling privilege es...

CVE-2015-6621

CVE-2015-6621 affects Android SystemUI on 5.x prior to 5.1.1 LMY48Z and 6.0 prior to 2015-12-01. A crafted app can escalate privileges to Signature/SignatureOrSystem due to the SystemUI bug 23909438. The vulnerability is documented across NVD/CVE lists and is addressed by the December 2015 Androi...

CVE-2015-6621

SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23909438...

CVE-2015-6630

SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to read screenshots and consequently gain privileges via a crafted application, aka internal bug 19121797...

December 2015 Android Over-the-Air Nexus Security Update

Google has patched another critical Android vulnerability in Mediaserver, which has been maligned since this summer’s barrage of patches for the Stagefright vulnerability, along with a critical rooting vulnerability in the mobile operating system’s kernel. In all, 19 vulnerabilities were patched ...

Design/Logic Flaw

packages/Keyguard/res/layout/keyguardpasswordview.xml in Lockscreen in Android 5.x before 5.1.1 LMY48M does not restrict the number of characters in the passwordEntry input field, which allows physically proximate attackers to bypass intended access restrictions via a long password that triggers ...

CVE-2015-3860

packages/Keyguard/res/layout/keyguardpasswordview.xml in Lockscreen in Android 5.x before 5.1.1 LMY48M does not restrict the number of characters in the passwordEntry input field, which allows physically proximate attackers to bypass intended access restrictions via a long password that triggers ...