Vulnerabilities > Google > Android > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-06-13 | CVE-2016-2463 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android Multiple integer overflows in the h264dec component in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a large memory allocation, aka internal bug 27855419. | 7.5 |
| 2016-05-09 | CVE-2016-2462 | Permissions, Privileges, and Access Controls vulnerability in Google Android 6.0/6.0.1 OpenSSLCipher.java in Conscrypt in Android 6.x before 2016-05-01 mishandles updates of the Additional Authenticated Data (AAD) array, which allows attackers to spoof message authentication via unspecified vectors, aka internal bug 27371173. | 7.6 |
| 2016-05-09 | CVE-2016-2461 | Permissions, Privileges, and Access Controls vulnerability in Google Android 6.0/6.0.1 OpenSSLCipher.java in Conscrypt in Android 6.x before 2016-05-01 mishandles resets of the Additional Authenticated Data (AAD) array, which allows attackers to spoof message authentication via unspecified vectors, aka internal bugs 27324690 and 27696681. | 7.6 |
| 2016-05-09 | CVE-2016-2454 | Improper Input Validation vulnerability in Google Android The Qualcomm hardware video codec in Android before 2016-05-01 on Nexus 5 devices allows remote attackers to cause a denial of service (reboot) via a crafted file, aka internal bug 26221024. | 7.1 |
| 2016-05-09 | CVE-2016-2453 | Permissions, Privileges, and Access Controls vulnerability in Google Android ONE The MediaTek Wi-Fi driver in Android before 2016-05-01 on Android One devices allows attackers to gain privileges via a crafted application, aka internal bug 27549705. | 7.6 |
| 2016-05-09 | CVE-2016-2446 | Permissions, Privileges, and Access Controls vulnerability in Google Android The NVIDIA media driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27441354. | 7.6 |
| 2016-05-09 | CVE-2016-2445 | Permissions, Privileges, and Access Controls vulnerability in Google Android The NVIDIA media driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27253079. | 7.6 |
| 2016-05-09 | CVE-2016-2444 | Permissions, Privileges, and Access Controls vulnerability in Google Android The NVIDIA media driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27208332. | 7.6 |
| 2016-05-09 | CVE-2016-2443 | Permissions, Privileges, and Access Controls vulnerability in Google Android The Qualcomm MDP driver in Android before 2016-05-01 on Nexus 5 and Nexus 7 (2013) devices allows attackers to gain privileges via a crafted application, aka internal bug 26404525. | 7.6 |
| 2016-05-09 | CVE-2016-2442 | Permissions, Privileges, and Access Controls vulnerability in Google Android The Qualcomm buspm driver in Android before 2016-05-01 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 26494907. | 7.6 |