CVE-2016-3912

The framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 allow attackers to gain privileges via a crafted application, aka internal bug 30202481...

UBUNTU-CVE-2016-3832

The framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 do not ensure that package data originated from the Package Manager, which allows attackers to bypass an unspecified protection mechanism via a crafted application, aka internal bug...

Code injection

services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to increase intent-filter priority via a crafted application, aka internal bug 27450489...

CVE-2016-3832

The framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 do not ensure that package data originated from the Package Manager, which allows attackers to bypass an unspecified protection mechanism via a crafted application, aka internal bug...

CVE-2016-2497

The CVE affects Android framework APIs, specifically PackageManagerService.java, and concerns an elevation of privilege where a pre-installed, updated, or updated app can increase its intent-filter priority via a crafted application. Affected versions include Android 4.x up to 4.4.3, Android 5.0....

Android Framework APIs Component Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA.Framework APIs are one of the API components used to create the framework. A power lifting vulnerability exists in the Framework APIs component in Android. An attacker can exploit...

CVE-2016-3759

The Framework APIs in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to read backup data via a crafted application that leverages priv-app access to insert a backup transport, aka internal bug 28406080...

CVE-2016-3759

The Framework APIs in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to read backup data via a crafted application that leverages priv-app access to insert a backup transport, aka internal bug 28406080...

CVE-2016-3759

The CVE-2016-3759 entry documents a vulnerability in Android Framework APIs where an attacker with a crafted priv-app can insert a backup transport to read backup data (internal bug 28406080). Affected are Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01. The impact is in...

CVE-2016-3759

The Framework APIs in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to read backup data via a crafted application that leverages priv-app access to insert a backup transport, aka internal bug 28406080...

Android Framework APIs Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA.Framework APIs are one of the API components used to create the framework. A power lifting vulnerability exists in Android's Framework APIs. An attacker can exploit this...