Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/09/2016 Updated: 13/08/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

server/notification/NotificationManagerService.java in the Notification Manager Service in Android 6.x prior to 2016-09-01 and 7.0 prior to 2016-09-01 lacks uid checks, which allows malicious users to bypass intended restrictions on method calls via a crafted application, aka internal bug 29421441.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google android 7.0
google android 6.0
google android 6.0.1

CWE-284 http://source.android.com/security/bulletin/2016-09-01.html https://android.googlesource.com/platform/frameworks/base/+/61e9103b5725965568e46657f4781dd8f2e5b623 http://www.securityfocus.com/bid/92875 http://www.securitytracker.com/id/1036763 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-3884

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect