Lucene search
K

641 matches found

Cvelist
Cvelist
added 2016/01/06 12:0 a.m.23 views

CVE-2015-6647

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554...

7.7AI score0.0069EPSS
Exploits0References4
Cvelist
Cvelist
added 2016/01/06 12:0 a.m.41 views

CVE-2015-6639

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875...

7.6AI score0.06906EPSS
Exploits3References5
Positive Technologies
Positive Technologies
added 2016/01/06 12:0 a.m.5 views

PT-2016-1003 · Google · Android +1

Name of the Vulnerable Software and Affected Versions: Android versions 5.x through 5.1.1 before LMY49F Android versions 6.0 before 2016-01-01 Description: The issue is related to insufficient access control in the Widevine QSEE TrustZone application. It allows attackers to gain privileges via a...

9.3CVSS7.6AI score0.0069EPSS
Exploits0References6
CVE
CVE
added 2016/01/06 12:0 a.m.69 views

CVE-2015-6647

CVE-2015-6647 is a privilege-escalation in the Widevine QSEE TrustZone app on Android. A crafted app exploiting QSEECOM access could grant elevated privileges on devices running Android 5.x before 5.1.1 LMY49F and Android 6.0 before 2016-01-01. Mitigation/fixes are provided by Android patches: An...

9.3CVSS7.6AI score0.0069EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2016/01/06 12:0 a.m.8 views

PT-2016-1009 · Google · Android +1

Name of the Vulnerable Software and Affected Versions: Android versions 5.x through 5.1.1 before LMY49F Android versions 6.0 before 2016-01-01 Description: The issue is related to insufficient access control in the Widevine QSEE TrustZone application. It allows attackers to gain privileges via a...

9.3CVSS7.5AI score0.06906EPSS
Exploits3References9
CVE
CVE
added 2016/01/06 12:0 a.m.205 views

CVE-2015-6639

CVE-2015-6639 details: A privilege-escalation in the Widevine QSEE TrustZone app on Android 5.x (before 5.1.1 LMY49F) and 6.0 (before 2016‑01‑01) allows a crafted app with QSEECOM access to gain privileges. Root cause involves trustlet/TrustZone interaction enabling local escalation via the QSEE ...

9.3CVSS7.5AI score0.06906EPSS
Exploits3References5Affected Software1
android
android
added 2016/01/01 12:0 a.m.35 views

CVE-2015-6647

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554...

9.3CVSS9AI score0.0069EPSS
Exploits0References2Affected Software1
android
android
added 2016/01/01 12:0 a.m.87 views

CVE-2015-6639

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875...

9.3CVSS9AI score0.06906EPSS
Exploits3References2Affected Software1
android
android
added 2015/10/13 12:0 a.m.50 views

Qualcomm TrustZone

An exploit which allows code execution within the TrustZone kernel. This may allow capturing of secret keys, disabling of hardware protection and unlocking locked bootloaders...

9.3CVSS4AI score0.01782EPSS
Exploits0References3Affected Software1
myhack58
myhack58
added 2015/08/04 12:0 a.m.16 views

Android tremble! Black Hat2015 hacker conference to be announced 6 security a threat-vulnerability warning-the black bar safety net

For phone control and information security of the party, the Black Hat, the world's top hacker conference is certainly not to be missed, each time the General Assembly will burst a lot of interesting things, such as this opening in the United States, held Black Hat 2 0 1 5, the“fresh”security...

0.1AI score
Exploits0
myhack58
myhack58
added 2015/07/18 12:0 a.m.29 views

Android very hurt: the Black Hat 2 0 1 5 hacker conference will be the announcement of the 6 mobile security threats-vulnerability warning-the black bar safety net

Black Hat 2 0 1 5 held soon, now with the small series together see see next month at Black Hat USA posted some of the Android security threat. 6 4-bit Android Root Recently a lot about the smartphone Root will cause the phone to much more dangerous debate. But we hope that cyber criminals would...

8.7AI score
Exploits0
ThreatPost
ThreatPost
added 2015/06/18 8:22 a.m.12 views

Non-Nexus Devices and the Android Security Rewards Program

Google’s decision to limit its Android Security Rewards program to newer Nexus devices clearly puts the Google phones on the top tier of secure mobile devices. It also could ultimately have the effect of putting non-Nexus devices in the line of fire. For now, limiting the rewards program to Nexus...

7.8AI score
Exploits0References5
ThreatPost
ThreatPost
added 2015/06/16 10:3 a.m.15 views

Google Launches Android Security Rewards For Nexus Devices

Google today announced that it has expanded the scope of its vulnerability rewards program to include the latest versions of its Nexus mobile devices, dangling thousands of dollars in front of researchers willing to hunt not only for vulnerabilities but also develop bypasses for native Android...

0.4AI score
Exploits0References3
myhack58
myhack58
added 2015/04/28 12:0 a.m.15 views

Samsung Galaxy S5 latest vulnerabilities: hackers can steal the user's fingerprint data-vulnerability warning-the black bar safety net

Fireeye(FireEye security researchers at the Samsung Galaxy S5 has discovered a new vulnerability. Although the Galaxy phone the fingerprint is encrypted, but hackers can still clone the phone of the user's fingerprint data, thus reducing the fingerprint image, posing as the victims identity...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2014/10/27 1:20 p.m.11 views

Samsung Rebuffs Criticism of Knox Crypto, Password Management

Replies and rebuttals are flying about regarding a report critical of the encryption and password management functions deployed with Samsung’s Knox technology in its Android-based Galaxy and Note mobile devices. Last week, a researcher published an advisory that said a PIN chosen during setup of...

7.5AI score
Exploits0References3
NVD
NVD
added 2013/04/13 10:56 a.m.34 views

CVE-2013-3051

The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...

6.2CVSS5.9AI score0.00227EPSS
Exploits1References2
Prion
Prion
added 2013/04/13 10:56 a.m.28 views

Design/Logic Flaw

The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...

6.2CVSS6.3AI score0.03373EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2013/04/13 10:0 a.m.197 views

CVE-2013-3051

The CVE-2013-3051 issue concerns the TrustZone kernel on certain Motorola builds of Android 4.1.2 (Razr HD, Razr M, Atrix HD with Qualcomm MSM8960). The vulnerability arises because the kernel does not verify the association between a specific physical-address argument and a memory region, enabli...

6.2CVSS5.4AI score0.00227EPSS
In wildExploits1References2Affected Software5
Cvelist
Cvelist
added 2013/04/13 10:0 a.m.36 views

CVE-2013-3051

The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...

5.6AI score0.00227EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2013/04/13 12:0 a.m.128 views

CVE-2013-3051

The TrustZone kernel, when used in conjunction with a certain Motorola build of Android 4.1.2, on Motorola Razr HD, Razr M, and Atrix HD devices with the Qualcomm MSM8960 chipset does not verify the association between a certain physical-address argument and a memory region, which allows local...

7.8CVSS2.5AI score0.03373EPSS
In wildExploits2References3
Rows per page
Query Builder