Android Security Vulnerabilities and Issues — Android CVE List

Lucene search

GoogleAndroid

10 matches found

CVE•added 2015/11/03 11:59 a.m.•47 views

CVE-2015-6611

mediaserver in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, aka internal bugs 23905951, 23912202, 23953967, 23696300, 23600291, 23756261, 23541506, 232...

5CVSS6.6AI score0.00117EPSS

CVE•added 2015/11/03 11:59 a.m.•46 views

CVE-2015-6608

mediaserver in Android 5.x before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 19779574, 23680780, 23876444, and 23658148, a different vulnerability than CVE-2015...

10CVSS7.6AI score0.03758EPSS

CVE•added 2015/11/03 11:59 a.m.•46 views

CVE-2015-6609

libutils in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted audio file, aka internal bug 22953624.

10CVSS7.8AI score0.05925EPSS

CVE•added 2015/11/03 11:59 a.m.•44 views

CVE-2015-8074

mediaserver in Android before 5.1.1 LMY48X allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, aka internal bugs 23540907 and 23515142, a different vulnerability than CVE-2015-6611.

5CVSS6.6AI score0.00117EPSS

CVE•added 2015/11/03 11:59 a.m.•43 views

CVE-2015-6612

libmedia in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to gain privileges via a crafted application, aka internal bug 23540426.

9.3CVSS6.7AI score0.07723EPSS

CVE•added 2015/11/03 11:59 a.m.•40 views

CVE-2015-6613

Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to send commands to a debugging port, and consequently gain privileges, via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24371736.

5.1CVSS6.9AI score0.00141EPSS

CVE•added 2015/11/03 11:59 a.m.•40 views

CVE-2015-6614

Telephony in Android 5.x before 5.1.1 LMY48X allows attackers to gain privileges, and consequently bypass intended network-interface restrictions, perform expensive data transfers, or cause a denial of service (call-reception outage or mute manipulation), via a crafted application, aka internal bug...

5.8CVSS6.8AI score0.0005EPSS

CVE•added 2015/11/03 11:59 a.m.•38 views

CVE-2015-6610

libstagefright in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to gain privileges or cause a denial of service (memory corruption) via a crafted application, aka internal bug 23707088.

10CVSS6.7AI score0.00212EPSS

CVE•added 2015/11/03 11:59 a.m.•37 views

CVE-2015-8072

mediaserver in Android 4.4 through 5.x before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23881715, a different vulnerability than CVE-2015-6608 and CVE-2015-8073...

10CVSS7.6AI score0.03758EPSS

CVE•added 2015/11/03 11:59 a.m.•36 views

CVE-2015-8073

mediaserver in Android 4.4 and 5.1 before 5.1.1 LMY48X allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 14388161, a different vulnerability than CVE-2015-6608 and CVE-2015-8072.

10CVSS7.6AI score0.03758EPSS