CVE-2016-2479 in Androidinfo

Zusammenfassung

von MITRE

The mm-video-v4l2 vdec component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 mishandles a buffer count, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27532282.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

18.02.2016

Veröffentlichung

12.06.2016

Moderieren

akzeptiert

Eintrag

VDB-87858

CPE

bereit

CWE

CWE-119 (bestätigt)

CVSS

7.8 (NVD)

EPSS

0.00473

KEV

nein

Aktivitäten

very low

Sektor

Homeoffice, Lawfirm, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2479
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2479
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2479/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!