CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3907
https://notcve.org/view.php?id=CVE-2016-3907
25 Nov 2016 — An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Android ID: A-30593266. References: Qualcomm QC-CR#1054352. Una vulnerabilidad de divulgación de información en componentes Qualcomm incluyendo el con... • http://www.securityfocus.com/bid/94139 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6698
https://notcve.org/view.php?id=CVE-2016-6698
25 Nov 2016 — An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Android ID: A-30741851. References: Qualcomm QC-CR#1058826. Una vulnerabilidad de divulgación de información en componentes Qualcomm incluyendo el con... • http://www.securityfocus.com/bid/94139 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2016-6739
https://notcve.org/view.php?id=CVE-2016-6739
25 Nov 2016 — An elevation of privilege vulnerability in the Qualcomm camera driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Android ID: A-30074605. References: Qualcomm QC-CR#1049826. Una vulnerabilidad de elevación de privilegio en el controlador de cámara Qualcomm en Android en versiones anteriores a 05-11-2016 podría habilitar a una aplicac... • http://www.securityfocus.com/bid/94142 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2016-6702
https://notcve.org/view.php?id=CVE-2016-6702
25 Nov 2016 — A remote code execution vulnerability in libjpeg in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable an attacker using a specially crafted file to execute arbitrary code in the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses libjpeg. Android ID: A-30259087. Una vulnerabilidad de ejecución remota de código en libjpeg en Android 4.x en versiones anteriores a 4.4.4, 5.0.x en versiones an... • http://www.securityfocus.com/bid/94160 • CWE-284: Improper Access Control •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6732
https://notcve.org/view.php?id=CVE-2016-6732
25 Nov 2016 — An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Android ID: A-30906599. References: NVIDIA N-CVE-2016-6732. Una vulnerabilidad de elevación de privilegio en el controlador NVIDIA GPU en Android en... • http://www.securityfocus.com/bid/94140 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6733
https://notcve.org/view.php?id=CVE-2016-6733
25 Nov 2016 — An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Android ID: A-30906694. References: NVIDIA N-CVE-2016-6733. Una vulnerabilidad de elevación de privilegio en el controlador NVIDIA GPU en Android en... • http://www.securityfocus.com/bid/94140 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6736
https://notcve.org/view.php?id=CVE-2016-6736
25 Nov 2016 — An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Android ID: A-30953284. References: NVIDIA N-CVE-2016-6736. Una vulnerabilidad de elevación de privilegio en el controlador NVIDIA GPU en Android en... • http://www.securityfocus.com/bid/94140 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-6721
https://notcve.org/view.php?id=CVE-2016-6721
25 Nov 2016 — An information disclosure vulnerability in Mediaserver in Android 6.x before 2016-11-01 and 7.0 before 2016-11-01 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Android ID: A-30875060. Una vulnerabilidad de divulgación de información en Mediaserver en Android 6.x en versiones anteriores 01-11-2016 y 7.0 en versiones anteriores a 01-11-2016 podría habilitar a una ... • http://www.securityfocus.com/bid/94143 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6701
https://notcve.org/view.php?id=CVE-2016-6701
25 Nov 2016 — A remote code execution vulnerability in libskia in Android 7.0 before 2016-11-01 could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as High due to the possibility of remote code execution within the context of the gallery process. Android ID: A-30190637. Una vulnerabilidad de ejecución remota de código en libskia en Android 7.0 en versiones anteriores a 01-11-2016 podría habilitar a un atacante que utiliza un archivo... • http://www.securityfocus.com/bid/94162 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-284: Improper Access Control •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2016-6741
https://notcve.org/view.php?id=CVE-2016-6741
25 Nov 2016 — An elevation of privilege vulnerability in the Qualcomm camera driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Android ID: A-30559423. References: Qualcomm QC-CR#1060554. Una vulnerabilidad de elevación de privilegio en el controlador de cámara Qualcomm en Android en versiones anteriores a 05-11-2016 podría habilitar a una aplicac... • http://www.securityfocus.com/bid/94142 • CWE-264: Permissions, Privileges, and Access Controls •