CVE-2016-3843
- EPSS 0.79%
- Veröffentlicht 05.08.2016 20:59:34
- Zuletzt bearbeitet 06.05.2026 22:30:45
Android before 2016-08-05 does not properly restrict code execution in a kernel context, which allows attackers to gain privileges via a crafted application, as demonstrated by the kernel performance subsystem and the Qualcomm performance component, ...
CVE-2016-3844
- EPSS 0.42%
- Veröffentlicht 05.08.2016 20:59:34
- Zuletzt bearbeitet 06.05.2026 22:30:45
mediaserver in Android before 2016-08-05 on Nexus 9 and Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28299517.
CVE-2016-3842
- EPSS 0.41%
- Veröffentlicht 05.08.2016 20:59:32
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28377352 and Qualcomm internal bug CR1002974.
- EPSS 2.14%
- Veröffentlicht 05.08.2016 20:59:31
- Zuletzt bearbeitet 06.05.2026 22:30:45
Conscrypt in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-05 does not properly identify session reuse, which allows remote attackers to execute arbitrary code via unspecified vectors, aka internal bug 28751...
CVE-2016-3839
- EPSS 0.43%
- Veröffentlicht 05.08.2016 20:59:30
- Zuletzt bearbeitet 06.05.2026 22:30:45
Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to cause a denial of service (loss of Bluetooth 911 functionality) via a crafted application that sends a signal to a Bluetooth ...
CVE-2016-3838
- EPSS 0.36%
- Veröffentlicht 05.08.2016 20:59:29
- Zuletzt bearbeitet 06.05.2026 22:30:45
Android 6.x before 2016-08-01 allows attackers to cause a denial of service (loss of locked-screen 911 functionality) via a crafted application that uses the app-pinning feature, aka internal bug 28761672.
CVE-2016-3837
- EPSS 0.45%
- Veröffentlicht 05.08.2016 20:59:28
- Zuletzt bearbeitet 06.05.2026 22:30:45
service/jni/com_android_server_wifi_WifiNative.cpp in Wi-Fi in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to obtain sensitive information via a crafted application that provides a MAC address with too f...
CVE-2016-3836
- EPSS 0.45%
- Veröffentlicht 05.08.2016 20:59:27
- Zuletzt bearbeitet 06.05.2026 22:30:45
The SurfaceFlinger service in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attackers to obtain sensitive information via a crafted application, related to lack of a default constructor in include/ui/FrameStats.h, a...
CVE-2016-3835
- EPSS 0.46%
- Veröffentlicht 05.08.2016 20:59:25
- Zuletzt bearbeitet 06.05.2026 22:30:45
The secure-session feature in the mm-video-v4l2 venc component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 mishandles heap pointers, which allows attackers to obtain sensitive informat...
CVE-2016-3834
- EPSS 0.4%
- Veröffentlicht 05.08.2016 20:59:24
- Zuletzt bearbeitet 06.05.2026 22:30:45
The camera APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allow attackers to bypass intended access restrictions and obtain sensitive information about ANW buffer addresses via a crafted applicatio...