|
6701
|
7.8
9.3
|
HIGH
Local
|
include/core/SkPostConfig.h in Skia, as used in System_server in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01, mishandles certain crashes, which allows …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-2412
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:48
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6702
|
6.5
9.3
|
MEDIUM
Local
|
A Qualcomm Power Management kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages root access, aka internal bug 26866053.
|
CWE-20
Improper Input Validation
|
CVE-2016-2411
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:*
|
|
|
|
|
2024-11-21 11:48
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6703
|
7.4
6.9
|
HIGH
Local
|
A Qualcomm video kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka inte…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-2410
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:*
|
|
|
|
|
2024-11-21 11:48
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6704
|
8.1
9.3
|
HIGH
Network
|
A Texas Instruments (TI) haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-2409
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:*
|
|
|
|
|
2024-11-21 11:48
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6705
|
9.8
10.0
|
CRITICAL
Network
|
dhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 and other products, mismanages option lengths, which allows remote attacke…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1503
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:46
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6706
|
8.8
5.8
|
HIGH
Adjacent
|
The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to bypass intended pairing rest…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0850
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:42
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6707
|
8.4
7.2
|
HIGH
Local
|
Multiple integer overflows in minzip/SysUtil.c in the Recovery Procedure in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allow attackers to gain privileges via a crafted …
|
CWE-189
Numeric Errors
|
CVE-2016-0849
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:42
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6708
|
8.4
7.2
|
HIGH
Local
|
Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to bypass private-storage file-access restrictions v…
|
CWE-362
Race Condition
|
CVE-2016-0848
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:42
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6709
|
8.4
7.2
|
HIGH
Local
|
The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to spoof the originating telephone number of a call via a crafted application, as d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0847
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:42
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
6710
|
8.4
7.2
|
HIGH
Local
|
libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-0846
|
cpe:2.3:o:google:android:6.0:* cpe:2.3:o:google:android:6.0.1:* cpe:2.3:o:google:android:5.1:* cpe:2.3:o:googl…
|
|
|
|
|
2024-11-21 11:42
2016-04-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|