NotCVE - vendor:"Google" product:"Nexus 6"

7 results (0.002 seconds)

CVSS: 6.3EPSS: 31%CPEs: 28EXPL: 8

CVE-2023-45866 – bluez: unauthorized HID device connections allows keystroke injection and arbitrary commands execution

https://notcve.org/view.php?id=CVE-2023-45866

07 Dec 2023 — Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. An example affected package is bluez 5.64-0ubuntu1 in Ubuntu 22.04LTS. NOTE: in some cases, a CVE-2020-0556 mitigation would have already addressed this Bluetooth HID Hosts issue. Bluetooth HID Hosts in BlueZ ... • https://github.com/pentestfunctions/BlueDucky • CWE-285: Improper Authorization CWE-287: Improper Authentication •

CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2016-6684

https://notcve.org/view.php?id=CVE-2016-6684

10 Oct 2016 — The kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, and Android One devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30148243. El kernel en Android en versiones anteriores a 2016-10-05 en dispositivos Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player y Android One permite a atacantes obtener información sensible a través de una aplicación manipulada, vulnerabilidad también conocida como error in... • http://source.android.com/security/bulletin/2016-10-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.3EPSS: 1%CPEs: 4EXPL: 1

CVE-2016-2431

https://notcve.org/view.php?id=CVE-2016-2431

09 May 2016 — The Qualcomm TrustZone component in Android before 2016-05-01 on Nexus 5, Nexus 6, Nexus 7 (2013), and Android One devices allows attackers to gain privileges via a crafted application, aka internal bug 24968809. El componente Qualcomm TrustZone en Android en versiones anteriores a 2016-05-01 sobre dispositivos Nexus 5, Nexus 6, Nexus 7 (2013) y Android One permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 24968809. • https://github.com/laginimaineb/cve-2016-2431 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0

CVE-2016-2432

https://notcve.org/view.php?id=CVE-2016-2432

09 May 2016 — The Qualcomm TrustZone component in Android before 2016-05-01 on Nexus 6 and Android One devices allows attackers to gain privileges via a crafted application, aka internal bug 25913059. El componente Qualcomm TrustZone en Android en versiones anteriores a 2016-05-01 sobre dispositivos Nexus 6 y Android One permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 25913059. • http://source.android.com/security/bulletin/2016-05-01.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.6EPSS: 0%CPEs: 4EXPL: 0

CVE-2016-2441

https://notcve.org/view.php?id=CVE-2016-2441

09 May 2016 — The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26354602. El controlador Qualcomm buspm en Android en versiones anteriores a 2016-05-01 sobre dispositivos Nexus 5X, 6 y 6P permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 26354602. • http://source.android.com/security/bulletin/2016-05-01.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.6EPSS: 0%CPEs: 4EXPL: 0

CVE-2016-2442

https://notcve.org/view.php?id=CVE-2016-2442

09 May 2016 — The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26494907. El controlador Qualcomm buspm en Android en versiones anteriores a 2016-05-01 sobre dispositivos Nexus 5X, 6 y 6P permite a atacantes obtener privilegios a través de una aplicación manipulada, también conocido como error interno 26494907. • http://source.android.com/security/bulletin/2016-05-01.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.5EPSS: 0%CPEs: 31EXPL: 0

CVE-2016-2459

https://notcve.org/view.php?id=CVE-2016-2459

09 May 2016 — mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not initialize certain data structures, which allows attackers to obtain sensitive information via a crafted application, related to IGraphicBufferConsumer.cpp and IGraphicBufferProducer.cpp, aka internal bug 27556038. mediaserver en Android 4.x en versiones anteriores a 4.4.4, 5.0.x en versiones anteriores a 5.0.2, 5.1.x en versiones anteriores a 5.1.1 y 6.x en versiones anteriores a 2016-05-01 n... • http://source.android.com/security/bulletin/2016-05-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •