Activity Manager in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 does not properly terminate process groups, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 19285814.
Max CVSS
5.5
EPSS Score
0.05%
Published
2016-06-13
Updated
2016-06-15
AudioSource.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 does not initialize certain data, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 27855172.
Max CVSS
5.5
EPSS Score
0.05%
Published
2016-06-13
Updated
2016-06-14
The Qualcomm Wi-Fi driver in Android before 2016-06-01 on Nexus 7 (2013) devices allows attackers to bypass intended data-access restrictions via a crafted application, aka internal bug 27777162.
Max CVSS
5.5
EPSS Score
0.06%
Published
2016-06-13
Updated
2016-06-14
3 vulnerabilities found