Lucene search
HistoryDec 08, 2015 - 11:59 p.m.
CVE-2015-6617
skia
android
cve-2015-6617
memory corruption
remote code execution
dos
media file
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
64.3%
Skia, as used in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 23648740.
Affected configurations
Node
googleandroidRange5.0–5.1.1
ORgoogleandroidMatch6.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| google:android | google android | lt | 5.1.1 |
| google:android | google android | eq | 6.0 |
Related
cvelist
cvelist
CVE-2015-6617
2015-12-08 23:00:00
android
android
CVE-2015-6617
2015-12-01 00:00:00
prion
prion
Memory corruption
2015-12-08 23:59:00
ubuntucve
ubuntucve
CVE-2015-6617
2015-12-08 00:00:00
nvd
nvd
CVE-2015-6617
2015-12-08 23:59:01
threatpost
threatpost
December 2015 Android Over-the-Air Nexus Security Update
2015-12-08 11:21:52
androidsecurity
androidsecurity
Nexus Security Bulletin—January 2016
2016-01-04 00:00:00
Nexus Security Bulletin - December 2015
2015-12-07 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
64.3%
Related for CVE-2015-6617