|
272201
|
7.8 |
HIGH
Local
|
google
|
android
|
The Qualcomm performance component in Android before 2016-07-05 on Nexus 5, 6, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 281…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-3768
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272202
|
7.8 |
HIGH
Local
|
google
|
android
|
The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28169363 and MediaTek internal bu…
|
CWE-399
Resource Management Errors
|
CVE-2016-3767
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272203
|
7.5 |
HIGH
Network
|
google
|
android
|
MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not check whether memory allocation succeeds, w…
|
CWE-20
Improper Input Validation
|
CVE-2016-3766
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272204
|
7.7 |
HIGH
Local
|
google
|
android
|
decoder/impeg2d_bitstream.c in mediaserver in Android 6.x before 2016-07-01 allows attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via …
|
CWE-200
CWE-399
Information Exposure
Resource Management Errors
|
CVE-2016-3765
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272205
|
4.0 |
MEDIUM
Local
|
google
|
android
|
media/libmediaplayerservice/MetadataRetrieverClient.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to obtain sensit…
|
CWE-20
Improper Input Validation
|
CVE-2016-3764
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272206
|
3.3 |
LOW
Local
|
google
|
android
|
net/PacProxySelector.java in the Proxy Auto-Config (PAC) feature in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 does not ensure that URL information is…
|
CWE-20
Improper Input Validation
|
CVE-2016-3763
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272207
|
7.8 |
HIGH
Local
|
google
|
android
|
The sockets subsystem in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to gain privileges via a crafted application that uses (1) the AF_MSM_IPC socket cl…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-3762
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272208
|
4.0 |
MEDIUM
Local
|
google
|
android
|
NfcService.java in NFC in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to obtain sensitive foreground-application information via a cra…
|
CWE-200
Information Exposure
|
CVE-2016-3761
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272209
|
7.5 |
HIGH
Adjacent
|
google
|
android
|
Bluetooth in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows local users to gain privileges by establishing a pairing that remains present during a session of the pri…
|
CWE-20
CWE-362
Improper Input Validation
Race Condition
|
CVE-2016-3760
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272210
|
3.3 |
LOW
Local
|
google
|
android
|
The Framework APIs in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allow attackers to read backup data via a crafted application that leverages priv-app access to insert …
|
CWE-200
Information Exposure
|
CVE-2016-3759
|
2024-11-21 11:50 |
2016-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
