Google

Android

7895 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2015-6640

  • EPSS 0.11%
  • Veröffentlicht 06.01.2016 19:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The prctl_set_vma_anon_name function in kernel/sys.c in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 does not ensure that only one vma is accessed in a certain update action, which allows attackers to gain privileges or cause a denial of ser...

9.3

CVE-2015-6639

  • EPSS 7.46%
  • Veröffentlicht 06.01.2016 19:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875.

9.3

CVE-2015-6638

  • EPSS 0.04%
  • Veröffentlicht 06.01.2016 19:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Imagination Technologies driver in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application, aka internal bug 24673908.

9.3

CVE-2015-6637

  • EPSS 0.07%
  • Veröffentlicht 06.01.2016 19:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The MediaTek misc-sd driver in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application, aka internal bug 25307013.

10

CVE-2015-6636

  • EPSS 1.22%
  • Veröffentlicht 06.01.2016 19:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

mediaserver in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 25070493 and 24686670.

4.3

CVE-2015-5310

  • EPSS 0.3%
  • Veröffentlicht 06.01.2016 19:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The WNM Sleep Mode code in wpa_supplicant 2.x before 2.6 does not properly ignore key data in response frames when management frame protection (MFP) was not negotiated, which allows remote attackers to inject arbitrary broadcast or multicast packets ...

9.3

CVE-2015-8507

  • EPSS 0.93%
  • Veröffentlicht 08.12.2015 23:59:21
  • Zuletzt bearbeitet 12.04.2025 10:46:40

mediaserver in Android 6.0 before 2015-12-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 24157524, a different vulnerability than CVE-2015-6616, CVE-201...

9.3

CVE-2015-8506

  • EPSS 0.93%
  • Veröffentlicht 08.12.2015 23:59:20
  • Zuletzt bearbeitet 12.04.2025 10:46:40

mediaserver in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 24441553, a different vulnerability tha...

9.3

CVE-2015-8505

  • EPSS 0.93%
  • Veröffentlicht 08.12.2015 23:59:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

mediaserver in Android before 5.1.1 LMY48Z allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 17769851, a different vulnerability than CVE-2015-6616, CVE-2015-...

9.3

CVE-2015-6634

  • EPSS 0.93%
  • Veröffentlicht 08.12.2015 23:59:18
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The display drivers in Android before 5.1.1 LMY48Z allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 24163261.