Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
google android 6.0.1 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-2496
The Framework UI permission-dialog implementation in Android 6.x prior to 2016-06-01 allows malicious users to conduct tapjacking attacks and access arbitrary private-storage files by creating a partially overlapping window, aka internal bug 26677796.
Google Android 6.0.1
Google Android 6.0
4.3
CVSSv2
CVE-2016-2498
The Qualcomm Wi-Fi driver in Android prior to 2016-06-01 on Nexus 7 (2013) devices allows malicious users to bypass intended data-access restrictions via a crafted application, aka internal bug 27777162.
Google Android 6.0
Google Android 6.0.1
7.5
CVSSv2
CVE-2016-3742
decoder/ih264d_process_intra_mb.c in mediaserver in Android 6.x prior to 2016-07-01 mishandles intra mode, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 28165659.
Google Android 6.0.1
Google Android 6.0
7.5
CVSSv2
CVE-2016-3748
The sockets subsystem in Android 6.x prior to 2016-07-01 allows malicious users to bypass intended system-call restrictions via a crafted application that makes an ioctl call, aka internal bug 28171804.
Google Android 6.0
Google Android 6.0.1
4.6
CVSSv2
CVE-2016-3749
server/LockSettingsService.java in LockSettingsService in Android 6.x prior to 2016-07-01 allows malicious users to modify the screen-lock password or pattern via a crafted application, aka internal bug 28163930.
Google Android 6.0.1
Google Android 6.0
7.5
CVSSv2
CVE-2016-3752
internal/app/ChooserActivity.java in the ChooserTarget service in Android 6.x prior to 2016-07-01 mishandles target security checks, which allows malicious users to gain privileges via a crafted application, aka internal bug 28384423.
Google Android 6.0.1
Google Android 6.0
4.3
CVSSv2
CVE-2016-3838
Android 6.x prior to 2016-08-01 allows malicious users to cause a denial of service (loss of locked-screen 911 functionality) via a crafted application that uses the app-pinning feature, aka internal bug 28761672.
Google Android 6.0.1
Google Android 6.0
7.2
CVSSv2
CVE-2016-3917
The fingerprint login feature in Android 6.0.1 prior to 2016-10-01 and 7.0 prior to 2016-10-01 does not track the user account during the authentication process, which allows physically proximate malicious users to authenticate as an arbitrary user by leveraging lockscreen access...
Google Android 6.0.1
Google Android 7.0
7.1
CVSSv2
CVE-2016-3828
decoder/ih264d_api.c in mediaserver in Android 6.x prior to 2016-08-01 mishandles invalid PPS and SPS NAL units, which allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 28835995.
Google Android 6.0
Google Android 6.0.1
7.1
CVSSv2
CVE-2016-3829
The ih264d decoder in mediaserver in Android 6.x prior to 2016-08-01 does not initialize certain structure members, which allows remote malicious users to cause a denial of service (device hang or reboot) via a crafted media file, aka internal bug 29023649.
Google Android 6.0
Google Android 6.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »