Vulnerabilities > Google > Android > High

DATE CVE VULNERABILITY TITLE RISK
2016-06-13 CVE-2016-2464 Improper Input Validation vulnerability in Google Android
libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted mkv file, aka internal bug 23167726.
local
low complexity
google CWE-20
7.8
2016-06-13 CVE-2016-2463 Numeric Errors vulnerability in Google Android
Multiple integer overflows in the h264dec component in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a large memory allocation, aka internal bug 27855419.
local
low complexity
google CWE-189
8.4
2016-05-09 CVE-2016-4477 Data Processing Errors vulnerability in Google Android
wpa_supplicant 0.4.0 through 2.5 does not reject \n and \r characters in passphrase parameters, which allows local users to trigger arbitrary library loading and consequently gain privileges, or cause a denial of service (daemon outage), via a crafted (1) SET, (2) SET_CRED, or (3) SET_NETWORK command.
local
low complexity
google CWE-19
7.8
2016-05-09 CVE-2016-2462 Permissions, Privileges, and Access Controls vulnerability in Google Android 6.0/6.0.1
OpenSSLCipher.java in Conscrypt in Android 6.x before 2016-05-01 mishandles updates of the Additional Authenticated Data (AAD) array, which allows attackers to spoof message authentication via unspecified vectors, aka internal bug 27371173.
local
high complexity
google CWE-264
7.0
2016-05-09 CVE-2016-2461 Permissions, Privileges, and Access Controls vulnerability in Google Android 6.0/6.0.1
OpenSSLCipher.java in Conscrypt in Android 6.x before 2016-05-01 mishandles resets of the Additional Authenticated Data (AAD) array, which allows attackers to spoof message authentication via unspecified vectors, aka internal bugs 27324690 and 27696681.
local
high complexity
google CWE-264
7.0
2016-05-09 CVE-2016-2456 Permissions, Privileges, and Access Controls vulnerability in Google Android
The MediaTek Wi-Fi driver in Android before 2016-05-01 on Android One devices allows attackers to gain privileges via a crafted application, aka internal bug 27275187.
local
high complexity
google CWE-264
7.0
2016-05-09 CVE-2016-2452 Permissions, Privileges, and Access Controls vulnerability in Google Android
codecs/amrnb/dec/SoftAMR.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not validate buffer sizes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bugs 27662364 and 27843673.
local
low complexity
google CWE-264
7.8
2016-05-09 CVE-2016-2451 Permissions, Privileges, and Access Controls vulnerability in Google Android
codecs/on2/dec/SoftVPX.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not validate VPX output buffer sizes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27597103.
local
low complexity
google CWE-264
7.8
2016-05-09 CVE-2016-2450 Permissions, Privileges, and Access Controls vulnerability in Google Android
codecs/on2/enc/SoftVPXEncoder.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not validate OMX buffer sizes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27569635.
local
low complexity
google CWE-264
7.8
2016-05-09 CVE-2016-2449 Permissions, Privileges, and Access Controls vulnerability in Google Android
services/camera/libcameraservice/device3/Camera3Device.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not validate template IDs, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27568958.
local
low complexity
google CWE-264
7.8