Lucene search
HistoryDec 08, 2015 - 11:59 p.m.
CVE-2015-6627
cve-2015-6627
android
vulnerability
sensitive information
audio component
remote attackers
crafted audio file
nvd
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
51.0%
The Audio component in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information via a crafted audio file, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24211743.
Affected configurations
Node
googleandroidRange5.0–5.1.1
ORgoogleandroidMatch6.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| google:android | google android | lt | 5.1.1 |
| google:android | google android | eq | 6.0 |
Related
nvd
nvd
CVE-2015-6627
2015-12-08 23:59:12
cvelist
cvelist
CVE-2015-6627
2015-12-08 23:00:00
ubuntucve
ubuntucve
CVE-2015-6627
2015-12-08 00:00:00
prion
prion
Design/Logic Flaw
2015-12-08 23:59:00
androidsecurity
androidsecurity
Nexus Security Bulletin - December 2015
2015-12-07 00:00:00
2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
51.0%
Related for CVE-2015-6627