VYPR
Medium severity5.9NVD Advisory· Published Dec 6, 2016· Updated Jun 17, 2026

CVE-2016-5341

CVE-2016-5341

Description

The GPS component in Android before 2016-12-05 allows man-in-the-middle attackers to cause a denial of service (GPS signal-acquisition delay) via an incorrect xtra.bin or xtra2.bin file on a spoofed Qualcomm gpsonextra.net or izatcloud.net host, aka internal bug 31470303 and external bug 211602 (and AndroidID-7225554).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Google/Android2 versions
    cpe:2.3:o:google:android:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:google:android:*:*:*:*:*:*:*:*range: <=7.1.0
    • (no CPE)range: < 2016-12-05

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.