Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-11046
An issue exists on Samsung mobile devices with JBP(4.3), KK(4.4), and L(5.0/5.1) software. Because of a misused whitelist, attackers can reach the radio layer (aka RIL or RILD) to place calls or send SMS messages. The Samsung ID is SVE-2016-5733 (May 2016).
Google Android 4.3
Google Android 4.4
Google Android 5.0
Google Android 5.1
7.5
CVSSv3
CVE-2017-18664
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. There is a NULL pointer exception in PersonManager, causing memory corruption. The Samsung ID is SVE-2017-8286 (June 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.5
CVSSv3
CVE-2017-18670
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. android.intent.action.SIOP_LEVEL_CHANGED allows a serializable intent reboot. The Samsung ID is SVE-2017-8363 (May 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.5
CVSSv3
CVE-2017-18685
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. The InputMethod application can cause a system crash via a malformed serializable object in an Intent. The Samsung ID is SVE-2016-7123 (February 2017).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
7.8
CVSSv3
CVE-2015-6639
The Widevine QSEE TrustZone application in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows malicious users to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875.
Google Android 6.0.1
Google Android 6.0
Google Android 5.0
Google Android 5.1.1
1 EDB exploit
16 Github repositories
1 Article
7.8
CVSSv3
CVE-2015-6640
The prctl_set_vma_anon_name function in kernel/sys.c in Android prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 does not ensure that only one vma is accessed in a certain update action, which allows malicious users to gain privileges or cause a denial of service (vma list corru...
Google Android 5.0
Google Android 5.1.1
Google Android 4.4.4
Google Android 6.0
1 Github repository
9.8
CVSSv3
CVE-2015-6636
mediaserver in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bugs 25070493 and 24686670.
Google Android 6.0.1
Google Android 5.1.1
Google Android 6.0
Google Android 5.0
1 Article
7.8
CVSSv3
CVE-2015-6638
The Imagination Technologies driver in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows malicious users to gain privileges via a crafted application, aka internal bug 24673908.
Google Android 5.0
Google Android 5.1.1
Google Android 6.0.1
Google Android 6.0
7.5
CVSSv3
CVE-2016-11026
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. BootReceiver allows malicious users to trigger a system crash because of incorrect exception handling. The Samsung ID is SVE-2016-7118 (December 2016).
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
8.1
CVSSv3
CVE-2016-11030
An issue exists on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (with Hrm sensor support) software. The sysfs of the MAX86902 sensor driver does not prevent concurrent access, leading to a race condition and resultant heap-based buffer overflow. The Samsung ID is S...
Google Android 4.4
Google Android 5.0
Google Android 5.1
Google Android 6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »