Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 5.0.1 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-6754
A remote code execution vulnerability in Webview in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-11-05 could enable a remote malicious user to execute arbitrary code when the user is navigating to a website. This issue is rated as High due to the poss...
Google Android 5.1.0
Google Android
Google Android 5.0
Google Android 5.0.1
Google Android 5.1
Google Android 6.0
1 EDB exploit
1 Github repository
9.3
CVSSv2
CVE-2016-2413
media/libmedia/IOMX.cpp in mediaserver in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 does not initialize a handle pointer, which allows malicious users to gain privileges via a crafted application, as demonstrated by obtaining Signature or Sig...
Google Android 5.0.1
Google Android 5.0
Google Android 6.0.1
Google Android 5.1.0
Google Android 6.0
Google Android 5.1
9.3
CVSSv2
CVE-2016-3833
The Shell component in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 does not properly manage the MANAGE_USERS and CREATE_USERS permissions, which allows malicious users to bypass intended access restrictions via a crafted application, aka intern...
Google Android 6.0
Google Android 5.0.1
Google Android 5.1
Google Android 5.1.0
Google Android 6.0.1
Google Android 5.0
9.3
CVSSv2
CVE-2015-6647
The Widevine QSEE TrustZone application in Android 5.x prior to 5.1.1 LMY49F and 6.0 prior to 2016-01-01 allows malicious users to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554.
Google Android 5.1.0
Google Android 5.0.2
Google Android 6.0
Google Android 5.0.1
Google Android 5.0
Google Android 5.1.1
4.9
CVSSv2
CVE-2016-2414
The Minikin library in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 does not properly consider negative size values in font data, which allows remote malicious users to cause a denial of service (memory corruption and reboot loop) via a crafted ...
Google Android 5.0
Google Android 6.0.1
Google Android 5.1.0
Google Android 5.0.1
Google Android 6.0
Google Android 5.1
5.4
CVSSv2
CVE-2016-3760
Bluetooth in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 allows local users to gain privileges by establishing a pairing that remains present during a session of the primary user, aka internal bug 27410683.
Google Android 5.0.1
Google Android 6.0.1
Google Android 6.0
Google Android 5.1.0
Google Android 5.1
Google Android 5.0
9.3
CVSSv2
CVE-2016-3762
The sockets subsystem in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-07-01 allows malicious users to gain privileges via a crafted application that uses (1) the AF_MSM_IPC socket class or (2) another socket class that is unrecognized by SELinux, aka ...
Google Android 6.0
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
Google Android 6.0.1
4.6
CVSSv2
CVE-2016-3825
mm-video-v4l2/vidc/venc/src/omx_video_base.cpp in mediaserver in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-08-01 allocates an incorrect amount of memory, which allows malicious users to gain privileges via a crafted application, aka internal bug 28...
Google Android 5.0
Google Android 5.1
Google Android 5.0.1
Google Android 6.0
Google Android 5.1.0
Google Android 6.0.1
5
CVSSv2
CVE-2015-3854
packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java in Android 5.x allows malicious users to bypass a DEVICE_POWER permission requirement via a broadcast intent with the PNW.stopSaver action, aka internal bug 20918350.
Google Android 5.0
Google Android 5.1.1
Google Android 5.0.2
Google Android 5.1.0
Google Android 5.0.1
Google Android 5.1
3 Github repositories
7.2
CVSSv2
CVE-2016-0847
The Telecom Component in Android 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 allows malicious users to spoof the originating telephone number of a call via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka i...
Google Android 6.0.1
Google Android 5.1.0
Google Android 5.1
Google Android 5.0.1
Google Android 5.0
Google Android 6.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »