CVE-2016-2479 in Androidinformazioni

Riassunto

di MITRE

The mm-video-v4l2 vdec component in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 mishandles a buffer count, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27532282.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

18/02/2016

Divulgazione

12/06/2016

Moderazione

accettato

Voce

VDB-87858

CPE

pronto

CWE

CWE-119 (confermato)

CVSS

7.8 (NVD)

EPSS

0.00473

KEV

Attività

molto basso

Settore

Insurance, Finance, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2479
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2479
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2479/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you know our Splunk app?

Download it now for free!