Android
by Google
CVEs (4,290)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-6607 | 0.00 | — | 0.02 | Oct 6, 2015 | SQLite before 3.8.9, as used in Android before 5.1.1 LMY48T, allows attackers to gain privileges via a crafted application, aka internal bug 20099586. | |||
| CVE-2015-6606 | 0.00 | — | 0.01 | Oct 6, 2015 | The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786. | |||
| CVE-2015-6605 | 0.00 | — | 0.01 | Oct 6, 2015 | mediaserver in Android before 5.1.1 LMY48T allows attackers to cause a denial of service (process crash) via unspecified vectors, aka internal bugs 20915134 and 23142203, a different vulnerability than CVE-2015-7718. | |||
| CVE-2015-6604 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23129786. | |||
| CVE-2015-6603 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23227354. | |||
| CVE-2015-6601 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22935234. | |||
| CVE-2015-6600 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22882938. | |||
| CVE-2015-6599 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23416608. | |||
| CVE-2015-6598 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23306638. | |||
| CVE-2015-6596 | 0.00 | — | 0.01 | Oct 6, 2015 | mediaserver in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bugs 20731946 and 20719651, a different vulnerability than CVE-2015-7717. | |||
| CVE-2015-3879 | 0.00 | — | 0.01 | Oct 6, 2015 | Media Player Framework in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bug 23223325. | |||
| CVE-2015-3878 | 0.00 | — | 0.01 | Oct 6, 2015 | Media Projection in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to bypass an intended screen-recording warning feature and obtain sensitive screen-snapshot information via a crafted application that references a long application name, aka internal… | |||
| CVE-2015-3877 | 0.00 | — | 0.02 | Oct 6, 2015 | Skia, as used in Android before 5.1.1 LMY48T, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 20723696. | |||
| CVE-2015-3875 | 0.00 | — | 0.02 | Oct 6, 2015 | libutils in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted audio file, aka internal bug 22952485. | |||
| CVE-2015-3874 | 0.00 | — | 0.02 | Oct 6, 2015 | The Sonivox components in Android before 5.1.1 LMY48T allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 23335715, 23307276, and 23286323. | |||
| CVE-2015-3873 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 23016072, 23248776, 23247055, 22845824, 22008959, 21814993, 21048776, 20718524, 20674674,… | |||
| CVE-2015-3872 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23346388. | |||
| CVE-2015-3871 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23031033. | |||
| CVE-2015-3870 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22771132. | |||
| CVE-2015-3869 | 0.00 | — | 0.02 | Oct 6, 2015 | libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23036083. |
- CVE-2015-6607Oct 6, 2015risk 0.00cvss —epss 0.02
SQLite before 3.8.9, as used in Android before 5.1.1 LMY48T, allows attackers to gain privileges via a crafted application, aka internal bug 20099586.
- CVE-2015-6606Oct 6, 2015risk 0.00cvss —epss 0.01
The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 22301786.
- CVE-2015-6605Oct 6, 2015risk 0.00cvss —epss 0.01
mediaserver in Android before 5.1.1 LMY48T allows attackers to cause a denial of service (process crash) via unspecified vectors, aka internal bugs 20915134 and 23142203, a different vulnerability than CVE-2015-7718.
- CVE-2015-6604Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23129786.
- CVE-2015-6603Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23227354.
- CVE-2015-6601Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22935234.
- CVE-2015-6600Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22882938.
- CVE-2015-6599Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23416608.
- CVE-2015-6598Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23306638.
- CVE-2015-6596Oct 6, 2015risk 0.00cvss —epss 0.01
mediaserver in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bugs 20731946 and 20719651, a different vulnerability than CVE-2015-7717.
- CVE-2015-3879Oct 6, 2015risk 0.00cvss —epss 0.01
Media Player Framework in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bug 23223325.
- CVE-2015-3878Oct 6, 2015risk 0.00cvss —epss 0.01
Media Projection in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to bypass an intended screen-recording warning feature and obtain sensitive screen-snapshot information via a crafted application that references a long application name, aka internal…
- CVE-2015-3877Oct 6, 2015risk 0.00cvss —epss 0.02
Skia, as used in Android before 5.1.1 LMY48T, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 20723696.
- CVE-2015-3875Oct 6, 2015risk 0.00cvss —epss 0.02
libutils in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted audio file, aka internal bug 22952485.
- CVE-2015-3874Oct 6, 2015risk 0.00cvss —epss 0.02
The Sonivox components in Android before 5.1.1 LMY48T allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 23335715, 23307276, and 23286323.
- CVE-2015-3873Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 23016072, 23248776, 23247055, 22845824, 22008959, 21814993, 21048776, 20718524, 20674674,…
- CVE-2015-3872Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23346388.
- CVE-2015-3871Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23031033.
- CVE-2015-3870Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 22771132.
- CVE-2015-3869Oct 6, 2015risk 0.00cvss —epss 0.02
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23036083.
Page 210 of 215