- EPSS 2.52%
- Veröffentlicht 07.02.2016 01:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
libstagefright in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a ...
CVE-2016-0802
- EPSS 1.7%
- Veröffentlicht 07.02.2016 01:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control me...
CVE-2016-0801
- EPSS 33.37%
- Veröffentlicht 07.02.2016 01:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2016-02-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control me...
CVE-2016-1948
- EPSS 0.45%
- Veröffentlicht 31.01.2016 18:59:14
- Zuletzt bearbeitet 06.05.2026 22:30:45
Mozilla Firefox before 44.0 on Android does not ensure that HTTPS is used for a lightweight-theme installation, which allows man-in-the-middle attackers to replace a theme's images and colors by modifying the client-server data stream.
CVE-2016-1943
- EPSS 0.96%
- Veröffentlicht 31.01.2016 18:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via the scrollTo method.
CVE-2016-1940
- EPSS 0.67%
- Veröffentlicht 31.01.2016 18:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Mozilla Firefox before 44.0 on Android allows remote attackers to spoof the address bar via a data: URL that is mishandled during (1) shortcut opening or (2) BOOKMARK intent processing.
CVE-2015-6647
- EPSS 0.69%
- Veröffentlicht 06.01.2016 19:59:12
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554.
CVE-2015-6646
- EPSS 0.6%
- Veröffentlicht 06.01.2016 19:59:11
- Zuletzt bearbeitet 06.05.2026 22:30:45
The System V IPC implementation in the kernel in Android before 6.0 2016-01-01 allows attackers to cause a denial of service (global kernel resource consumption) by leveraging improper interaction between IPC resource allocation and the memory manage...
CVE-2015-6645
- EPSS 0.34%
- Veröffentlicht 06.01.2016 19:59:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
SyncManager in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to cause a denial of service (continuous rebooting) via a crafted application, aka internal bug 23591205.
CVE-2015-6644
- EPSS 0.93%
- Veröffentlicht 06.01.2016 19:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to obtain sensitive information via a crafted application, aka internal bug 24106146.