CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2016-6684
https://notcve.org/view.php?id=CVE-2016-6684
10 Oct 2016 — The kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, and Android One devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30148243. El kernel en Android en versiones anteriores a 2016-10-05 en dispositivos Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player y Android One permite a atacantes obtener información sensible a través de una aplicación manipulada, vulnerabilidad también conocida como error in... • http://source.android.com/security/bulletin/2016-10-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 4EXPL: 0CVE-2016-2441
https://notcve.org/view.php?id=CVE-2016-2441
09 May 2016 — The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26354602. El controlador Qualcomm buspm en Android en versiones anteriores a 2016-05-01 sobre dispositivos Nexus 5X, 6 y 6P permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 26354602. • http://source.android.com/security/bulletin/2016-05-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.6EPSS: 0%CPEs: 4EXPL: 0CVE-2016-2442
https://notcve.org/view.php?id=CVE-2016-2442
09 May 2016 — The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26494907. El controlador Qualcomm buspm en Android en versiones anteriores a 2016-05-01 sobre dispositivos Nexus 5X, 6 y 6P permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 26494907. • http://source.android.com/security/bulletin/2016-05-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 31EXPL: 0CVE-2016-2459
https://notcve.org/view.php?id=CVE-2016-2459
09 May 2016 — mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not initialize certain data structures, which allows attackers to obtain sensitive information via a crafted application, related to IGraphicBufferConsumer.cpp and IGraphicBufferProducer.cpp, aka internal bug 27556038. mediaserver en Android 4.x en versiones anteriores a 4.4.4, 5.0.x en versiones anteriores a 5.0.2, 5.1.x en versiones anteriores a 5.1.1 y 6.x en versiones anteriores a 2016-05-01 n... • http://source.android.com/security/bulletin/2016-05-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2016-2062
https://notcve.org/view.php?id=CVE-2016-2062
05 May 2016 — The adreno_perfcounter_query_group function in drivers/gpu/msm/adreno_perfcounter.c in the Adreno GPU driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, uses an incorrect integer data type, which allows attackers to cause a denial of service (integer overflow, heap-based buffer overflow, and incorrect memory allocation) or possibly have unspecified other impact via a crafted IOCTL_KGSL_PERFCOUNTER_QUERY ioctl call. La funci... • http://source.android.com/security/bulletin/2016-06-01.html • CWE-190: Integer Overflow or Wraparound •