Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2016-3837
service/jni/com_android_server_wifi_WifiNative.cpp in Wi-Fi in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 allows malicious users to obtain sensitive information via a crafted application that provides a MAC address with too few characters, aka...
Google Android 6.0.1
Google Android 5.1
Google Android 5.0.1
Google Android 5.1.0
Google Android 6.0
Google Android 5.0
446
VMScore
CVE-2015-3854
packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java in Android 5.x allows malicious users to bypass a DEVICE_POWER permission requirement via a broadcast intent with the PNW.stopSaver action, aka internal bug 20918350.
Google Android 5.0
Google Android 5.1.1
Google Android 5.0.2
Google Android 5.1.0
Google Android 5.0.1
Google Android 5.1
3 Github repositories
187
VMScore
CVE-2016-2457
server/pm/UserManagerService.java in Wi-Fi in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-05-01 allows malicious users to bypass intended restrictions on Wi-Fi configuration changes by leveraging guest access, aka internal bug 27411179.
Google Android 6.0.1
Google Android 5.1.0
Google Android 6.0
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
828
VMScore
CVE-2016-2413
media/libmedia/IOMX.cpp in mediaserver in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 does not initialize a handle pointer, which allows malicious users to gain privileges via a crafted application, as demonstrated by obtaining Signature or Sig...
Google Android 5.0.1
Google Android 5.0
Google Android 6.0.1
Google Android 5.1.0
Google Android 6.0
Google Android 5.1
436
VMScore
CVE-2016-2414
The Minikin library in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 does not properly consider negative size values in font data, which allows remote malicious users to cause a denial of service (memory corruption and reboot loop) via a crafted ...
Google Android 5.0
Google Android 6.0.1
Google Android 5.1.0
Google Android 5.0.1
Google Android 6.0
Google Android 5.1
632
VMScore
CVE-2016-2415
exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 allows malicious users to obtain sensitive information via a crafted application that triggers a spoofed ...
Google Android 6.0.1
Google Android 5.0
Google Android 5.1.0
Google Android 5.0.1
Google Android 6.0
Google Android 5.1
641
VMScore
CVE-2016-0847
The Telecom Component in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 allows malicious users to spoof the originating telephone number of a call via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka i...
Google Android 6.0.1
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
Google Android 6.0
1 Github repository
828
VMScore
CVE-2015-6647
The Widevine QSEE TrustZone application in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows malicious users to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554.
Google Android 5.1.0
Google Android 5.0.2
Google Android 6.0
Google Android 5.0.1
Google Android 5.0
Google Android 5.1.1
828
VMScore
CVE-2016-3762
The sockets subsystem in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 allows malicious users to gain privileges via a crafted application that uses (1) the AF_MSM_IPC socket class or (2) another socket class that is unrecognized by SELinux, aka ...
Google Android 6.0
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
Google Android 6.0.1
383
VMScore
CVE-2016-2500
Activity Manager in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-06-01 does not properly terminate process groups, which allows malicious users to obtain sensitive information via a crafted application, aka internal bug 19285814.
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
Google Android 6.0
Google Android 6.0.1
Google Android 5.1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »