CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2015-6621
https://notcve.org/view.php?id=CVE-2015-6621
08 Dec 2015 — SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23909438. SystemUI en Android 5.x en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes obtener privilegios a través de una aplicación manipulada, según lo demostrado mediante la obtención de acceso Signature o SignatureOrSystem, también conocido... • http://source.android.com/security/bulletin/2015-12-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-6622
https://notcve.org/view.php?id=CVE-2015-6622
08 Dec 2015 — The Native Frameworks Library in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23905002. La Native Frameworks Library en Android en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes obtener información sensible, y consecuentemente eludir ... • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2015-6623
https://notcve.org/view.php?id=CVE-2015-6623
08 Dec 2015 — Wi-Fi in Android 6.0 before 2015-12-01 allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24872703. Wi-Fi en Android 6.0 en versiones anteriores a 2015-12-01 permite a atacantes obtener privilegios a través de una aplicación manipulada, según lo demostrado mediante la obtención de acceso Signature o SignatureOrSystem, también conocido como error interno 24872703. • http://source.android.com/security/bulletin/2015-12-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2015-6624
https://notcve.org/view.php?id=CVE-2015-6624
08 Dec 2015 — System Server in Android 6.0 before 2015-12-01 allows attackers to obtain sensitive information via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 23999740. System Server en Android 6.0 en versiones anteriores a 2015-12-01 permite a atacantes obtener información sensible a través de una aplicación manipulada, según lo demostrado mediante la obtención de acceso Signature o SignatureOrSystem, también conocido como error interno 23999740. • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2015-6625
https://notcve.org/view.php?id=CVE-2015-6625
08 Dec 2015 — System Server in Android 6.0 before 2015-12-01 allows attackers to obtain sensitive information and consequently gain privileges via a crafted application, aka internal bug 23936840. System Server en Android 6.0 en versiones anteriores a 2015-12-01 permite a atacantes obtener información sensible y consecuentemente obtener privilegios a través de una aplicación manipulada, también conocido como error interno 23936840. • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-6626
https://notcve.org/view.php?id=CVE-2015-6626
08 Dec 2015 — libstagefright in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24310423. libstagefright en Android en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes remotos obtener información sensible, y consecuentemente eludir un mecanismo d... • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-6627
https://notcve.org/view.php?id=CVE-2015-6627
08 Dec 2015 — The Audio component in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information via a crafted audio file, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24211743. El componente Audio en Android en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes remotos obtener información sensible a través de un archivo de audio manipulado, según lo demostrado mediante la obtención de... • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-6628
https://notcve.org/view.php?id=CVE-2015-6628
08 Dec 2015 — Media Framework in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24074485. Media Framework en Android en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes obtener información sensible, y consecuentemente eludir un mecanismo de protección ... • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2015-6630
https://notcve.org/view.php?id=CVE-2015-6630
08 Dec 2015 — SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to read screenshots and consequently gain privileges via a crafted application, aka internal bug 19121797. SystemUI en Android 5.x en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes leer capturas de pantalla y consecuentemente obtener privilegios a través de una aplicación manipulada, también conocido como error interno 19121797. • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2015-6631
https://notcve.org/view.php?id=CVE-2015-6631
08 Dec 2015 — libstagefright in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24623447. libstagefright en Android en versiones anteriores a 5.1.1 LMY48Z y 6.0 en versiones anteriores a 2015-12-01 permite a atacantes remotos obtener información sensible, y consecuentemente eludir un mecanismo d... • http://source.android.com/security/bulletin/2015-12-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •