Google

Android

8158 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.37%
  • Veröffentlicht 16.06.2016 18:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via vectors involving use of the srand function.

  • EPSS 0.36%
  • Veröffentlicht 13.06.2016 01:59:38
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Activity Manager in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 does not properly terminate process groups, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 19285814.

  • EPSS 0.36%
  • Veröffentlicht 13.06.2016 01:59:37
  • Zuletzt bearbeitet 06.05.2026 22:30:45

AudioSource.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 does not initialize certain data, which allows attackers to obtain sensitive information via a crafted app...

  • EPSS 0.36%
  • Veröffentlicht 13.06.2016 01:59:36
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Qualcomm Wi-Fi driver in Android before 2016-06-01 on Nexus 7 (2013) devices allows attackers to bypass intended data-access restrictions via a crafted application, aka internal bug 27777162.

  • EPSS 0.91%
  • Veröffentlicht 13.06.2016 01:59:35
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Framework UI permission-dialog implementation in Android 6.x before 2016-06-01 allows attackers to conduct tapjacking attacks and access arbitrary private-storage files by creating a partially overlapping window, aka internal bug 26677796.

  • EPSS 0.62%
  • Veröffentlicht 13.06.2016 01:59:34
  • Zuletzt bearbeitet 06.05.2026 22:30:45

SampleTable.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka inter...

  • EPSS 1.95%
  • Veröffentlicht 13.06.2016 01:59:33
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Off-by-one error in sdcard/sdcard.c in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSys...

  • EPSS 0.41%
  • Veröffentlicht 13.06.2016 01:59:32
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Broadcom Wi-Fi driver in Android before 2016-06-01 on Nexus 5, Nexus 6, Nexus 6P, Nexus 7 (2013), Nexus Player, and Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 26571522.

  • EPSS 0.41%
  • Veröffentlicht 13.06.2016 01:59:31
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The MediaTek power-management driver in Android before 2016-06-01 on Android One devices allows attackers to gain privileges via a crafted application, aka internal bug 28085410.

  • EPSS 0.42%
  • Veröffentlicht 13.06.2016 01:59:30
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The NVIDIA camera driver in Android before 2016-06-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27556408.