Lucene search
HistoryOct 06, 2015 - 5:59 p.m.
CVE-2015-3877
skia
android
cve-2015-3877
code execution
denial of service
memory corruption
media file
security vulnerability
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
51.2%
Skia, as used in Android before 5.1.1 LMY48T, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 20723696.
Affected configurations
Node
googleandroidRange≤5.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| google:android | google android | le | 5.1 |
Related
cvelist
cvelist
CVE-2015-3877
2015-10-06 17:00:00
nvd
nvd
CVE-2015-3877
2015-10-06 17:59:14
android
android
CVE-2015-3877
2015-10-01 00:00:00
prion
prion
Memory corruption
2015-10-06 17:59:00
ubuntucve
ubuntucve
CVE-2015-3877
2015-10-06 00:00:00
androidsecurity
androidsecurity
Nexus Security Bulletin - October 2015
2015-10-05 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
51.2%
Related for CVE-2015-3877