Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-3792 (GCVE-0-2016-3792)
Vulnerability from cvelistv5 – Published: 2016-07-11 01:00 – Updated: 2024-08-06 00:10
VLAI?
EPSS
Summary
CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T00:10:30.615Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-07-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-07-11T01:57:01",
"orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
"shortName": "google_android"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2016-3792",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29",
"refsource": "CONFIRM",
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
"assignerShortName": "google_android",
"cveId": "CVE-2016-3792",
"datePublished": "2016-07-11T01:00:00",
"dateReserved": "2016-03-30T00:00:00",
"dateUpdated": "2024-08-06T00:10:30.615Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2016-3792\",\"sourceIdentifier\":\"security@android.com\",\"published\":\"2016-07-11T02:00:17.907\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.\"},{\"lang\":\"es\",\"value\":\"CORE/HDD/src/wlan_hdd_hostapd.c en el controlador Wi-Fi Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 7 (2013) no maneja correctamente la copia de datos del espacio de usuario, lo que permite a atacantes obtener privilegios a trav\u00e9s de una aplicaci\u00f3n manipulada, tambi\u00e9n conocido como error interno de Android 27725204 y error interno de Qualcomm CR561022.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-264\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"6.0.1\",\"matchCriteriaId\":\"2567A6D5-BBA1-47B2-B1C3-EFABE9408FA9\"}]}]}],\"references\":[{\"url\":\"http://source.android.com/security/bulletin/2016-07-01.html\",\"source\":\"security@android.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29\",\"source\":\"security@android.com\"},{\"url\":\"http://source.android.com/security/bulletin/2016-07-01.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
CERTFR-2016-AVI-227
Vulnerability from certfr_avis - Published: 2016-07-11 - Updated: 2016-07-11
De multiples vulnérabilités ont été corrigées dans Google Android (Nexus). Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Google Android (Nexus) toutes versions n'intégrant pas le correctif de sécurité du 6 juillet 2016
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eGoogle Android (Nexus) toutes versions n\u0027int\u00e9grant pas le correctif de s\u00e9curit\u00e9 du 6 juillet 2016\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2015-8890",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8890"
},
{
"name": "CVE-2014-9803",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9803"
},
{
"name": "CVE-2016-3801",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3801"
},
{
"name": "CVE-2016-2507",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2507"
},
{
"name": "CVE-2016-0723",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0723"
},
{
"name": "CVE-2016-3773",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3773"
},
{
"name": "CVE-2016-3747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3747"
},
{
"name": "CVE-2014-9795",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9795"
},
{
"name": "CVE-2016-3799",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3799"
},
{
"name": "CVE-2016-3742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3742"
},
{
"name": "CVE-2016-3802",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3802"
},
{
"name": "CVE-2014-9794",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9794"
},
{
"name": "CVE-2016-3796",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3796"
},
{
"name": "CVE-2016-3745",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3745"
},
{
"name": "CVE-2016-3770",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3770"
},
{
"name": "CVE-2016-3763",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3763"
},
{
"name": "CVE-2016-3805",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3805"
},
{
"name": "CVE-2016-3760",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3760"
},
{
"name": "CVE-2015-8893",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8893"
},
{
"name": "CVE-2016-3816",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3816"
},
{
"name": "CVE-2016-2502",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2502"
},
{
"name": "CVE-2014-9786",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9786"
},
{
"name": "CVE-2016-3765",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3765"
},
{
"name": "CVE-2014-9783",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9783"
},
{
"name": "CVE-2014-9798",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9798"
},
{
"name": "CVE-2014-9797",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9797"
},
{
"name": "CVE-2015-8891",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8891"
},
{
"name": "CVE-2014-9792",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9792"
},
{
"name": "CVE-2016-3743",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3743"
},
{
"name": "CVE-2016-3758",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3758"
},
{
"name": "CVE-2016-3813",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3813"
},
{
"name": "CVE-2016-3767",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3767"
},
{
"name": "CVE-2016-3750",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3750"
},
{
"name": "CVE-2016-3762",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3762"
},
{
"name": "CVE-2014-9802",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9802"
},
{
"name": "CVE-2016-3818",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3818"
},
{
"name": "CVE-2016-3759",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3759"
},
{
"name": "CVE-2016-2506",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2506"
},
{
"name": "CVE-2016-3774",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3774"
},
{
"name": "CVE-2016-2067",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2067"
},
{
"name": "CVE-2016-3800",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3800"
},
{
"name": "CVE-2016-3766",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3766"
},
{
"name": "CVE-2016-3808",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3808"
},
{
"name": "CVE-2013-7457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-7457"
},
{
"name": "CVE-2014-9781",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9781"
},
{
"name": "CVE-2014-9778",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9778"
},
{
"name": "CVE-2016-3797",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3797"
},
{
"name": "CVE-2014-9789",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9789"
},
{
"name": "CVE-2016-2107",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2107"
},
{
"name": "CVE-2014-9780",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9780"
},
{
"name": "CVE-2016-3807",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3807"
},
{
"name": "CVE-2016-3751",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3751"
},
{
"name": "CVE-2016-3812",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3812"
},
{
"name": "CVE-2016-3741",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3741"
},
{
"name": "CVE-2014-9799",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9799"
},
{
"name": "CVE-2016-3749",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3749"
},
{
"name": "CVE-2016-3772",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3772"
},
{
"name": "CVE-2014-9779",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9779"
},
{
"name": "CVE-2016-3756",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3756"
},
{
"name": "CVE-2014-9800",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9800"
},
{
"name": "CVE-2015-8889",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8889"
},
{
"name": "CVE-2014-9790",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9790"
},
{
"name": "CVE-2016-3810",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3810"
},
{
"name": "CVE-2016-3761",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3761"
},
{
"name": "CVE-2015-8888",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8888"
},
{
"name": "CVE-2014-9784",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9784"
},
{
"name": "CVE-2016-3771",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3771"
},
{
"name": "CVE-2014-9791",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9791"
},
{
"name": "CVE-2014-9788",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9788"
},
{
"name": "CVE-2014-9793",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9793"
},
{
"name": "CVE-2016-3804",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3804"
},
{
"name": "CVE-2016-3795",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3795"
},
{
"name": "CVE-2016-3793",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3793"
},
{
"name": "CVE-2016-3814",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3814"
},
{
"name": "CVE-2016-3764",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3764"
},
{
"name": "CVE-2014-9785",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9785"
},
{
"name": "CVE-2016-2501",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2501"
},
{
"name": "CVE-2014-9796",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9796"
},
{
"name": "CVE-2016-2505",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2505"
},
{
"name": "CVE-2014-9777",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9777"
},
{
"name": "CVE-2016-3803",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3803"
},
{
"name": "CVE-2016-3748",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3748"
},
{
"name": "CVE-2016-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2068"
},
{
"name": "CVE-2016-3809",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3809"
},
{
"name": "CVE-2016-3746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3746"
},
{
"name": "CVE-2016-3757",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3757"
},
{
"name": "CVE-2015-8816",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8816"
},
{
"name": "CVE-2016-3798",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3798"
},
{
"name": "CVE-2016-3744",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3744"
},
{
"name": "CVE-2014-9801",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9801"
},
{
"name": "CVE-2016-3769",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3769"
},
{
"name": "CVE-2016-2508",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2508"
},
{
"name": "CVE-2016-3752",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3752"
},
{
"name": "CVE-2016-3792",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3792"
},
{
"name": "CVE-2016-3755",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3755"
},
{
"name": "CVE-2016-3811",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3811"
},
{
"name": "CVE-2015-8892",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8892"
},
{
"name": "CVE-2016-3768",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3768"
},
{
"name": "CVE-2014-9787",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9787"
},
{
"name": "CVE-2016-2108",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2108"
},
{
"name": "CVE-2016-3754",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3754"
},
{
"name": "CVE-2016-3815",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3815"
},
{
"name": "CVE-2016-3806",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3806"
},
{
"name": "CVE-2014-9782",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9782"
},
{
"name": "CVE-2016-3753",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3753"
},
{
"name": "CVE-2016-2503",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2503"
},
{
"name": "CVE-2016-3775",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3775"
}
],
"initial_release_date": "2016-07-11T00:00:00",
"last_revision_date": "2016-07-11T00:00:00",
"links": [],
"reference": "CERTFR-2016-AVI-227",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-07-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eGoogle Android (Nexus)\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android (Nexus)",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Android du 06 juillet 2016",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
CNVD-2016-04664
Vulnerability from cnvd - Published: 2016-07-12
VLAI Severity ?
Title
Android Qualcomm Wi-Fi驱动提权漏洞(CNVD-2016-04664)
Description
Android on Nexus 7是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套运行于Nexus 7(平板电脑)中并以Linux为基础的开源操作系统。Qualcomm Wi-Fi driver是用于其中的一个美国高通(Qualcomm)公司开发的Wi-Fi驱动组件。
Nexus 7 (2013)设备上的Android 2016-07-05之前版本中的Qualcomm Wi-Fi驱动中的CORE/HDD/src/wlan_hdd_hostapd.c文件存在提权漏洞,该漏洞源于程序未能正确处理用户空间的数据复制。攻击者可借助特制的应用程序利用该漏洞获取特权。
Severity
高
Patch Name
Android Qualcomm Wi-Fi驱动提权漏洞(CNVD-2016-04664)的补丁
Patch Description
Android on Nexus 7是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套运行于Nexus 7(平板电脑)中并以Linux为基础的开源操作系统。Qualcomm Wi-Fi driver是用于其中的一个美国高通(Qualcomm)公司开发的Wi-Fi驱动组件。
Nexus 7 (2013)设备上的Android 2016-07-05之前版本中的Qualcomm Wi-Fi驱动中的CORE/HDD/src/wlan_hdd_hostapd.c文件存在提权漏洞,该漏洞源于程序未能正确处理用户空间的数据复制。攻击者可借助特制的应用程序利用该漏洞获取特权。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: https://source.android.com/security/bulletin/2016-07-01.html
Reference
https://source.android.com/security/bulletin/2016-07-01.html
Impacted products
| Name | Google Android <2016-07-05 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2016-3792"
}
},
"description": "Android on Nexus 7\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u8fd0\u884c\u4e8eNexus 7\uff08\u5e73\u677f\u7535\u8111\uff09\u4e2d\u5e76\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002Qualcomm Wi-Fi driver\u662f\u7528\u4e8e\u5176\u4e2d\u7684\u4e00\u4e2a\u7f8e\u56fd\u9ad8\u901a\uff08Qualcomm\uff09\u516c\u53f8\u5f00\u53d1\u7684Wi-Fi\u9a71\u52a8\u7ec4\u4ef6\u3002\r\n\r\nNexus 7 (2013)\u8bbe\u5907\u4e0a\u7684Android 2016-07-05\u4e4b\u524d\u7248\u672c\u4e2d\u7684Qualcomm Wi-Fi\u9a71\u52a8\u4e2d\u7684CORE/HDD/src/wlan_hdd_hostapd.c\u6587\u4ef6\u5b58\u5728\u63d0\u6743\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406\u7528\u6237\u7a7a\u95f4\u7684\u6570\u636e\u590d\u5236\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u7279\u6743\u3002",
"discovererName": "Arif Hussain",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://source.android.com/security/bulletin/2016-07-01.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-04664",
"openTime": "2016-07-12",
"patchDescription": "Android on Nexus 7\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u8fd0\u884c\u4e8eNexus 7\uff08\u5e73\u677f\u7535\u8111\uff09\u4e2d\u5e76\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002Qualcomm Wi-Fi driver\u662f\u7528\u4e8e\u5176\u4e2d\u7684\u4e00\u4e2a\u7f8e\u56fd\u9ad8\u901a\uff08Qualcomm\uff09\u516c\u53f8\u5f00\u53d1\u7684Wi-Fi\u9a71\u52a8\u7ec4\u4ef6\u3002\r\n\r\nNexus 7 (2013)\u8bbe\u5907\u4e0a\u7684Android 2016-07-05\u4e4b\u524d\u7248\u672c\u4e2d\u7684Qualcomm Wi-Fi\u9a71\u52a8\u4e2d\u7684CORE/HDD/src/wlan_hdd_hostapd.c\u6587\u4ef6\u5b58\u5728\u63d0\u6743\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406\u7528\u6237\u7a7a\u95f4\u7684\u6570\u636e\u590d\u5236\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u7279\u6743\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Android Qualcomm Wi-Fi\u9a71\u52a8\u63d0\u6743\u6f0f\u6d1e\uff08CNVD-2016-04664\uff09\u7684\u8865\u4e01",
"products": {
"product": "Google Android \u003c2016-07-05"
},
"referenceLink": "https://source.android.com/security/bulletin/2016-07-01.html",
"serverity": "\u9ad8",
"submitTime": "2016-07-11",
"title": "Android Qualcomm Wi-Fi\u9a71\u52a8\u63d0\u6743\u6f0f\u6d1e\uff08CNVD-2016-04664\uff09"
}
FKIE_CVE-2016-3792
Vulnerability from fkie_nvd - Published: 2016-07-11 02:00 - Updated: 2025-04-12 10:46
Severity ?
Summary
CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2567A6D5-BBA1-47B2-B1C3-EFABE9408FA9",
"versionEndIncluding": "6.0.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022."
},
{
"lang": "es",
"value": "CORE/HDD/src/wlan_hdd_hostapd.c en el controlador Wi-Fi Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 7 (2013) no maneja correctamente la copia de datos del espacio de usuario, lo que permite a atacantes obtener privilegios a trav\u00e9s de una aplicaci\u00f3n manipulada, tambi\u00e9n conocido como error interno de Android 27725204 y error interno de Qualcomm CR561022."
}
],
"id": "CVE-2016-3792",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-07-11T02:00:17.907",
"references": [
{
"source": "security@android.com",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"source": "security@android.com",
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
}
],
"sourceIdentifier": "security@android.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-H558-FG72-4XPH
Vulnerability from github – Published: 2022-05-17 03:51 – Updated: 2022-05-17 03:51
VLAI?
Details
CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.
Severity ?
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2016-3792"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-07-11T02:00:00Z",
"severity": "HIGH"
},
"details": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.",
"id": "GHSA-h558-fg72-4xph",
"modified": "2022-05-17T03:51:16Z",
"published": "2022-05-17T03:51:16Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-3792"
},
{
"type": "WEB",
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
},
{
"type": "WEB",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
WID-SEC-W-2025-1426
Vulnerability from csaf_certbund - Published: 2016-07-06 22:00 - Updated: 2025-06-30 22:00Summary
Google Android: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Das Android Betriebssystem von Google ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um beliebigen Programmcode mit den Rechten des Dienstes auszuführen, um seine Rechte zu erweitern, um einen Denial of Service Zustand herbeizuführen und um Informationen offenzulegen.
Betroffene Betriebssysteme
- Android
- Blackberry
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Das Android Betriebssystem von Google ist eine quelloffene Plattform f\u00fcr mobile Ger\u00e4te. Die Basis bildet der Linux-Kernel.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um beliebigen Programmcode mit den Rechten des Dienstes auszuf\u00fchren, um seine Rechte zu erweitern, um einen Denial of Service Zustand herbeizuf\u00fchren und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Android\n- Blackberry",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1426 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2016/wid-sec-w-2025-1426.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1426 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1426"
},
{
"category": "external",
"summary": "Android Security Bulletin - July 2016 vom 2016-07-06",
"url": "https://source.android.com/security/bulletin/2016-07-01.html"
},
{
"category": "external",
"summary": "BlackBerry powered by Android Security Bulletin - July 2016 vom 2016-07-06",
"url": "http://support.blackberry.com/kb/articleDetail?articleNumber=000038293"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2009-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2007-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2006-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2005-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2002-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2001-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:1995-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:1994-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2017:0193 vom 2017-01-26",
"url": "https://access.redhat.com/errata/RHSA-2017:0193"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2017:0194 vom 2017-01-26",
"url": "https://access.redhat.com/errata/RHSA-2017:0194"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:0605-1 vom 2017-03-03",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20170605-1.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-234 vom 2025-07-01",
"url": "https://www.dell.com/support/kbdoc/000337969"
}
],
"source_lang": "en-US",
"title": "Google Android: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-30T22:00:00.000+00:00",
"generator": {
"date": "2025-07-01T15:23:30.512+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1426",
"initial_release_date": "2016-07-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "3",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-08-09T22:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2016-08-09T22:00:00.000+00:00",
"number": "5",
"summary": "Version nicht vorhanden"
},
{
"date": "2017-01-25T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-03-05T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2025-06-30T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Dell aufgenommen"
}
],
"status": "final",
"version": "8"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c19.13",
"product": {
"name": "Dell NetWorker \u003c19.13",
"product_id": "T044954"
}
},
{
"category": "product_version",
"name": "19.13",
"product": {
"name": "Dell NetWorker 19.13",
"product_id": "T044954-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.13"
}
}
},
{
"category": "product_version_range",
"name": "\u003c19.11.0.5",
"product": {
"name": "Dell NetWorker \u003c19.11.0.5",
"product_id": "T044959"
}
},
{
"category": "product_version",
"name": "19.11.0.5",
"product": {
"name": "Dell NetWorker 19.11.0.5",
"product_id": "T044959-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.11.0.5"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "4.4.4",
"product": {
"name": "Google Android 4.4.4",
"product_id": "305867",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:4.4.4"
}
}
},
{
"category": "product_version",
"name": "6",
"product": {
"name": "Google Android 6.0",
"product_id": "317179",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:6.0"
}
}
},
{
"category": "product_version",
"name": "5.1.1",
"product": {
"name": "Google Android 5.1.1",
"product_id": "317341",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:5.1.1"
}
}
},
{
"category": "product_version",
"name": "5.0.2",
"product": {
"name": "Google Android 5.0.2",
"product_id": "318068",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:5.0.2"
}
}
},
{
"category": "product_version",
"name": "6.0.1",
"product": {
"name": "Google Android 6.0.1",
"product_id": "318084",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:6.0.1"
}
}
}
],
"category": "product_name",
"name": "Android"
}
],
"category": "vendor",
"name": "Google"
},
{
"branches": [
{
"category": "product_name",
"name": "BlackBerry BlackBerry",
"product": {
"name": "BlackBerry BlackBerry",
"product_id": "1321",
"product_identification_helper": {
"cpe": "cpe:/h:rim:blackberry:-"
}
}
}
],
"category": "vendor",
"name": "RIM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-3809",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3809"
},
{
"cve": "CVE-2016-3810",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3810"
},
{
"cve": "CVE-2016-3811",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3811"
},
{
"cve": "CVE-2016-3812",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3812"
},
{
"cve": "CVE-2016-3813",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3813"
},
{
"cve": "CVE-2016-3814",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3814"
},
{
"cve": "CVE-2016-3815",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3815"
},
{
"cve": "CVE-2016-3816",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3816"
},
{
"cve": "CVE-2016-3818",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3818"
},
{
"cve": "CVE-2013-7457",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2013-7457"
},
{
"cve": "CVE-2014-9777",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9777"
},
{
"cve": "CVE-2014-9778",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9778"
},
{
"cve": "CVE-2014-9779",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9779"
},
{
"cve": "CVE-2014-9780",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9780"
},
{
"cve": "CVE-2014-9781",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9781"
},
{
"cve": "CVE-2014-9782",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9782"
},
{
"cve": "CVE-2014-9783",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9783"
},
{
"cve": "CVE-2014-9784",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9784"
},
{
"cve": "CVE-2014-9785",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9785"
},
{
"cve": "CVE-2014-9786",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9786"
},
{
"cve": "CVE-2014-9787",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9787"
},
{
"cve": "CVE-2014-9788",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9788"
},
{
"cve": "CVE-2014-9789",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9789"
},
{
"cve": "CVE-2014-9790",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9790"
},
{
"cve": "CVE-2014-9791",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9791"
},
{
"cve": "CVE-2014-9792",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9792"
},
{
"cve": "CVE-2014-9793",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9793"
},
{
"cve": "CVE-2014-9794",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9794"
},
{
"cve": "CVE-2014-9795",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9795"
},
{
"cve": "CVE-2014-9796",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9796"
},
{
"cve": "CVE-2014-9797",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9797"
},
{
"cve": "CVE-2014-9798",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9798"
},
{
"cve": "CVE-2014-9799",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9799"
},
{
"cve": "CVE-2014-9800",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9800"
},
{
"cve": "CVE-2014-9801",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9801"
},
{
"cve": "CVE-2014-9802",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9802"
},
{
"cve": "CVE-2014-9803",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9803"
},
{
"cve": "CVE-2015-8816",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8816"
},
{
"cve": "CVE-2015-8888",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8888"
},
{
"cve": "CVE-2015-8889",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8889"
},
{
"cve": "CVE-2015-8890",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8890"
},
{
"cve": "CVE-2015-8891",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8891"
},
{
"cve": "CVE-2015-8892",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8892"
},
{
"cve": "CVE-2015-8893",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8893"
},
{
"cve": "CVE-2016-0723",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-0723"
},
{
"cve": "CVE-2016-2067",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2067"
},
{
"cve": "CVE-2016-2068",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2068"
},
{
"cve": "CVE-2016-2107",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2107"
},
{
"cve": "CVE-2016-2108",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2108"
},
{
"cve": "CVE-2016-2501",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2501"
},
{
"cve": "CVE-2016-2502",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2502"
},
{
"cve": "CVE-2016-2503",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2503"
},
{
"cve": "CVE-2016-2505",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2505"
},
{
"cve": "CVE-2016-2506",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2506"
},
{
"cve": "CVE-2016-2507",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2507"
},
{
"cve": "CVE-2016-2508",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2508"
},
{
"cve": "CVE-2016-3741",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3741"
},
{
"cve": "CVE-2016-3742",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3742"
},
{
"cve": "CVE-2016-3743",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3743"
},
{
"cve": "CVE-2016-3744",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3744"
},
{
"cve": "CVE-2016-3745",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3745"
},
{
"cve": "CVE-2016-3746",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3746"
},
{
"cve": "CVE-2016-3747",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3747"
},
{
"cve": "CVE-2016-3748",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3748"
},
{
"cve": "CVE-2016-3749",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3749"
},
{
"cve": "CVE-2016-3750",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3750"
},
{
"cve": "CVE-2016-3751",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3751"
},
{
"cve": "CVE-2016-3752",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3752"
},
{
"cve": "CVE-2016-3753",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3753"
},
{
"cve": "CVE-2016-3754",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3754"
},
{
"cve": "CVE-2016-3755",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3755"
},
{
"cve": "CVE-2016-3756",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3756"
},
{
"cve": "CVE-2016-3757",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3757"
},
{
"cve": "CVE-2016-3758",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3758"
},
{
"cve": "CVE-2016-3759",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3759"
},
{
"cve": "CVE-2016-3760",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3760"
},
{
"cve": "CVE-2016-3761",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3761"
},
{
"cve": "CVE-2016-3762",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3762"
},
{
"cve": "CVE-2016-3763",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3763"
},
{
"cve": "CVE-2016-3764",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3764"
},
{
"cve": "CVE-2016-3765",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3765"
},
{
"cve": "CVE-2016-3766",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3766"
},
{
"cve": "CVE-2016-3767",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3767"
},
{
"cve": "CVE-2016-3768",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3768"
},
{
"cve": "CVE-2016-3769",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3769"
},
{
"cve": "CVE-2016-3770",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3770"
},
{
"cve": "CVE-2016-3771",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3771"
},
{
"cve": "CVE-2016-3772",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3772"
},
{
"cve": "CVE-2016-3773",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3773"
},
{
"cve": "CVE-2016-3774",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3774"
},
{
"cve": "CVE-2016-3775",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3775"
},
{
"cve": "CVE-2016-3792",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3792"
},
{
"cve": "CVE-2016-3793",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3793"
},
{
"cve": "CVE-2016-3794",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3794"
},
{
"cve": "CVE-2016-3795",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3795"
},
{
"cve": "CVE-2016-3796",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3796"
},
{
"cve": "CVE-2016-3797",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3797"
},
{
"cve": "CVE-2016-3798",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3798"
},
{
"cve": "CVE-2016-3799",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3799"
},
{
"cve": "CVE-2016-3800",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3800"
},
{
"cve": "CVE-2016-3801",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3801"
},
{
"cve": "CVE-2016-3802",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3802"
},
{
"cve": "CVE-2016-3803",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3803"
},
{
"cve": "CVE-2016-3804",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3804"
},
{
"cve": "CVE-2016-3805",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3805"
},
{
"cve": "CVE-2016-3806",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3806"
},
{
"cve": "CVE-2016-3807",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3807"
},
{
"cve": "CVE-2016-3808",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3808"
}
]
}
GSD-2016-3792
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-3792",
"description": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.",
"id": "GSD-2016-3792"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-3792"
],
"details": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022.",
"id": "GSD-2016-3792",
"modified": "2023-12-13T01:21:27.653958Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2016-3792",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29",
"refsource": "CONFIRM",
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "6.0.1",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2016-3792"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 7 (2013) devices mishandles userspace data copying, which allows attackers to gain privileges via a crafted application, aka Android internal bug 27725204 and Qualcomm internal bug CR561022."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"name": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29",
"refsource": "CONFIRM",
"tags": [],
"url": "https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/prima/commit/?id=28d4f0c1f712bffb4aa5b47f06e97d5a9fa06d29"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2016-07-12T17:36Z",
"publishedDate": "2016-07-11T02:00Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…