Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2016-3820

  • EPSS 1.49%
  • Veröffentlicht 05.08.2016 20:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 mishandles slice numbers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 28673410.

9.8

CVE-2016-3819

  • EPSS 1.49%
  • Veröffentlicht 05.08.2016 20:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Integer overflow in codecs/on2/h264dec/source/h264bsd_dpb.c in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows remote attackers to execute arbitrary code or cause a d...

7.8

CVE-2016-2504

  • EPSS 0.01%
  • Veröffentlicht 05.08.2016 20:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026365 and Qualcomm internal bug CR1002974.

7.5

CVE-2016-2497

  • EPSS 0.16%
  • Veröffentlicht 05.08.2016 20:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to increase intent-filter priority via a crafted...

10

CVE-2014-9902

  • EPSS 3.88%
  • Veröffentlicht 05.08.2016 20:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in CORE/SYS/legacy/src/utils/src/dot11f.c in the Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices allows remote attackers to execute arbitrary code via a crafted Information Element (IE) in an 802.11 manage...

7.8

CVE-2014-9901

  • EPSS 0.51%
  • Veröffentlicht 05.08.2016 20:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Qualcomm Wi-Fi driver in Android before 2016-08-05 on Nexus 7 (2013) devices makes incorrect snprintf calls, which allows remote attackers to cause a denial of service (device hang or reboot) via crafted frames, aka Android internal bug 28670333 ...

7.1

CVE-2016-3818

  • EPSS 0.15%
  • Veröffentlicht 11.07.2016 02:00:40
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libc in Android 4.x before 4.4.4 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.

5.5

CVE-2016-3816

  • EPSS 0.07%
  • Veröffentlicht 11.07.2016 02:00:39
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The MediaTek display driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28402240.

5.5

CVE-2016-3815

  • EPSS 0.06%
  • Veröffentlicht 11.07.2016 02:00:38
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28522274.

5.5

CVE-2016-3814

  • EPSS 0.07%
  • Veröffentlicht 11.07.2016 02:00:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28193342.