|
264651
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An elevation of privilege in the System UI in Android 7.0 before 2016-11-01 could enable a local malicious user to bypass the security prompt of your work profile in Multi-Window mode. This issue is …
|
CWE-254
CWE-284
7PK - Security Features
Improper Access Control
|
CVE-2016-6708
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264652
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in System Server in Android 6.x before 2016-11-01 and 7.0 before 2016-11-01 could enable a local malicious application to execute arbitrary code within the con…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6707
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264653
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in Mediaserver in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could enable a local malicious application t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6705
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264654
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could enable a local malic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6704
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264655
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in an Android runtime library in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-01 could enable an attacker using a spe…
|
CWE-284
Improper Access Control
|
CVE-2016-6703
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264656
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in libjpeg in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable an attacker using a specially crafted file to execute arbitrary c…
|
CWE-284
Improper Access Control
|
CVE-2016-6702
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264657
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in libskia in Android 7.0 before 2016-11-01 could enable an attacker using a specially crafted file to cause memory corruption during media file and data process…
|
CWE-119
CWE-284
Incorrect Access of Indexable Resource ('Range Error')
Improper Access Control
|
CVE-2016-6701
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264658
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in libzipfile in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable a local malicious application to execute arbitrary code with…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6700
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264659
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m…
|
CWE-200
Information Exposure
|
CVE-2016-6698
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264660
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in several parameters of the ccmivr page of Cisco Unified Communication Manager (CallManager) could allow an unauthenticated, remote attacker to launch a cross-site scripting (XSS) at…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6472
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
