|
268251
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
Setup Wizard in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows physically proximate attackers to modify settings or bypass a reset protection mechanism via unspecified vectors, aka …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6643
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268252
|
9.8 |
CRITICAL
Network
|
google
|
android
|
The kernel in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6642
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268253
|
3.1 |
LOW
Adjacent
|
google
|
android
|
Bluetooth in Android 6.0 before 2016-01-01 allows remote attackers to obtain sensitive Contacts information by leveraging pairing, aka internal bug 23607427.
|
CWE-200
Information Exposure
|
CVE-2015-6641
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268254
|
7.8 |
HIGH
Local
|
google
|
android
|
The prctl_set_vma_anon_name function in kernel/sys.c in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 does not ensure that only one vma is accessed in a certain update action, which allows at…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6640
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268255
|
7.8 |
HIGH
Local
|
google
|
android
|
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6639
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268256
|
7.8 |
HIGH
Local
|
google
|
android
|
The Imagination Technologies driver in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application, aka internal bug 24673908.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6638
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268257
|
7.8 |
HIGH
Local
|
google
|
android
|
The MediaTek misc-sd driver in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application, aka internal bug 25307013.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6637
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268258
|
9.8 |
CRITICAL
Network
|
google
|
android
|
mediaserver in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-6636
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268259
|
7.5 |
HIGH
Network
|
eucalyptus
|
eucalyptus
|
HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6861
|
2024-11-21 11:35 |
2016-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268260
|
8.4 |
HIGH
Local
|
hp
|
network_switch_software
j8692a
j8693a
j8697a
j8698a
j8699a
j8700a
j8715a
j8715b
j8992a
j9091a
j9263a
j9264a
j9265a
j9310a
j9311a
j9447a
j9448a
j9…
|
HPE Network Switches with software 15.16.x and 15.17.x allow local users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-6859.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6860
|
2024-11-21 11:35 |
2016-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
