Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-8889 (GCVE-0-2015-8889)
Vulnerability from cvelistv5 – Published: 2016-07-11 01:00 – Updated: 2024-08-06 08:29
VLAI?
EPSS
Summary
The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T08:29:22.080Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"name": "91628",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/91628"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-07-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-11-25T19:57:01",
"orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
"shortName": "google_android"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"name": "91628",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/91628"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2015-8889",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e",
"refsource": "CONFIRM",
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"name": "91628",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/91628"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
"assignerShortName": "google_android",
"cveId": "CVE-2015-8889",
"datePublished": "2016-07-11T01:00:00",
"dateReserved": "2016-05-31T00:00:00",
"dateUpdated": "2024-08-06T08:29:22.080Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2015-8889\",\"sourceIdentifier\":\"security@android.com\",\"published\":\"2016-07-11T01:59:27.227\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.\"},{\"lang\":\"es\",\"value\":\"La implementaci\u00f3n de aboot en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 6P omite la caracter\u00edstica de recuperaci\u00f3n de PIN, lo que tiene un impacto y vectores de ataque no especificados, tambi\u00e9n conocido como error interno de Android 28822677 y error interno de Qualcomm CR804067.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-264\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"6.0.1\",\"matchCriteriaId\":\"2567A6D5-BBA1-47B2-B1C3-EFABE9408FA9\"}]}]}],\"references\":[{\"url\":\"http://source.android.com/security/bulletin/2016-07-01.html\",\"source\":\"security@android.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/91628\",\"source\":\"security@android.com\"},{\"url\":\"https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e\",\"source\":\"security@android.com\"},{\"url\":\"http://source.android.com/security/bulletin/2016-07-01.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/91628\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
CERTFR-2016-AVI-227
Vulnerability from certfr_avis - Published: 2016-07-11 - Updated: 2016-07-11
De multiples vulnérabilités ont été corrigées dans Google Android (Nexus). Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Google Android (Nexus) toutes versions n'intégrant pas le correctif de sécurité du 6 juillet 2016
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003eGoogle Android (Nexus) toutes versions n\u0027int\u00e9grant pas le correctif de s\u00e9curit\u00e9 du 6 juillet 2016\u003c/P\u003e",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2015-8890",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8890"
},
{
"name": "CVE-2014-9803",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9803"
},
{
"name": "CVE-2016-3801",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3801"
},
{
"name": "CVE-2016-2507",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2507"
},
{
"name": "CVE-2016-0723",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0723"
},
{
"name": "CVE-2016-3773",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3773"
},
{
"name": "CVE-2016-3747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3747"
},
{
"name": "CVE-2014-9795",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9795"
},
{
"name": "CVE-2016-3799",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3799"
},
{
"name": "CVE-2016-3742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3742"
},
{
"name": "CVE-2016-3802",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3802"
},
{
"name": "CVE-2014-9794",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9794"
},
{
"name": "CVE-2016-3796",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3796"
},
{
"name": "CVE-2016-3745",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3745"
},
{
"name": "CVE-2016-3770",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3770"
},
{
"name": "CVE-2016-3763",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3763"
},
{
"name": "CVE-2016-3805",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3805"
},
{
"name": "CVE-2016-3760",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3760"
},
{
"name": "CVE-2015-8893",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8893"
},
{
"name": "CVE-2016-3816",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3816"
},
{
"name": "CVE-2016-2502",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2502"
},
{
"name": "CVE-2014-9786",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9786"
},
{
"name": "CVE-2016-3765",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3765"
},
{
"name": "CVE-2014-9783",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9783"
},
{
"name": "CVE-2014-9798",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9798"
},
{
"name": "CVE-2014-9797",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9797"
},
{
"name": "CVE-2015-8891",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8891"
},
{
"name": "CVE-2014-9792",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9792"
},
{
"name": "CVE-2016-3743",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3743"
},
{
"name": "CVE-2016-3758",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3758"
},
{
"name": "CVE-2016-3813",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3813"
},
{
"name": "CVE-2016-3767",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3767"
},
{
"name": "CVE-2016-3750",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3750"
},
{
"name": "CVE-2016-3762",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3762"
},
{
"name": "CVE-2014-9802",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9802"
},
{
"name": "CVE-2016-3818",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3818"
},
{
"name": "CVE-2016-3759",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3759"
},
{
"name": "CVE-2016-2506",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2506"
},
{
"name": "CVE-2016-3774",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3774"
},
{
"name": "CVE-2016-2067",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2067"
},
{
"name": "CVE-2016-3800",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3800"
},
{
"name": "CVE-2016-3766",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3766"
},
{
"name": "CVE-2016-3808",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3808"
},
{
"name": "CVE-2013-7457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-7457"
},
{
"name": "CVE-2014-9781",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9781"
},
{
"name": "CVE-2014-9778",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9778"
},
{
"name": "CVE-2016-3797",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3797"
},
{
"name": "CVE-2014-9789",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9789"
},
{
"name": "CVE-2016-2107",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2107"
},
{
"name": "CVE-2014-9780",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9780"
},
{
"name": "CVE-2016-3807",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3807"
},
{
"name": "CVE-2016-3751",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3751"
},
{
"name": "CVE-2016-3812",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3812"
},
{
"name": "CVE-2016-3741",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3741"
},
{
"name": "CVE-2014-9799",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9799"
},
{
"name": "CVE-2016-3749",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3749"
},
{
"name": "CVE-2016-3772",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3772"
},
{
"name": "CVE-2014-9779",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9779"
},
{
"name": "CVE-2016-3756",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3756"
},
{
"name": "CVE-2014-9800",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9800"
},
{
"name": "CVE-2015-8889",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8889"
},
{
"name": "CVE-2014-9790",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9790"
},
{
"name": "CVE-2016-3810",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3810"
},
{
"name": "CVE-2016-3761",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3761"
},
{
"name": "CVE-2015-8888",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8888"
},
{
"name": "CVE-2014-9784",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9784"
},
{
"name": "CVE-2016-3771",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3771"
},
{
"name": "CVE-2014-9791",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9791"
},
{
"name": "CVE-2014-9788",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9788"
},
{
"name": "CVE-2014-9793",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9793"
},
{
"name": "CVE-2016-3804",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3804"
},
{
"name": "CVE-2016-3795",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3795"
},
{
"name": "CVE-2016-3793",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3793"
},
{
"name": "CVE-2016-3814",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3814"
},
{
"name": "CVE-2016-3764",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3764"
},
{
"name": "CVE-2014-9785",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9785"
},
{
"name": "CVE-2016-2501",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2501"
},
{
"name": "CVE-2014-9796",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9796"
},
{
"name": "CVE-2016-2505",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2505"
},
{
"name": "CVE-2014-9777",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9777"
},
{
"name": "CVE-2016-3803",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3803"
},
{
"name": "CVE-2016-3748",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3748"
},
{
"name": "CVE-2016-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2068"
},
{
"name": "CVE-2016-3809",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3809"
},
{
"name": "CVE-2016-3746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3746"
},
{
"name": "CVE-2016-3757",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3757"
},
{
"name": "CVE-2015-8816",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8816"
},
{
"name": "CVE-2016-3798",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3798"
},
{
"name": "CVE-2016-3744",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3744"
},
{
"name": "CVE-2014-9801",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9801"
},
{
"name": "CVE-2016-3769",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3769"
},
{
"name": "CVE-2016-2508",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2508"
},
{
"name": "CVE-2016-3752",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3752"
},
{
"name": "CVE-2016-3792",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3792"
},
{
"name": "CVE-2016-3755",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3755"
},
{
"name": "CVE-2016-3811",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3811"
},
{
"name": "CVE-2015-8892",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-8892"
},
{
"name": "CVE-2016-3768",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3768"
},
{
"name": "CVE-2014-9787",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9787"
},
{
"name": "CVE-2016-2108",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2108"
},
{
"name": "CVE-2016-3754",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3754"
},
{
"name": "CVE-2016-3815",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3815"
},
{
"name": "CVE-2016-3806",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3806"
},
{
"name": "CVE-2014-9782",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-9782"
},
{
"name": "CVE-2016-3753",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3753"
},
{
"name": "CVE-2016-2503",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2503"
},
{
"name": "CVE-2016-3775",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3775"
}
],
"initial_release_date": "2016-07-11T00:00:00",
"last_revision_date": "2016-07-11T00:00:00",
"links": [],
"reference": "CERTFR-2016-AVI-227",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2016-07-11T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eGoogle Android (Nexus)\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android (Nexus)",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Android du 06 juillet 2016",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
CNVD-2016-04846
Vulnerability from cnvd - Published: 2016-07-15
VLAI Severity ?
Title
Android Qualcomm组件提权漏洞(CNVD-2016-04846)
Description
Android on Nexus 6P是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套运行于Nexus 6P(智能手机)中并以Linux为基础的开源操作系统。Qualcomm是使用在其中的一个美国高通(Qualcomm)公司的设备专用的高通组件。
Nexus 6P设备上的Android 2016-07-05之前版本的Qualcomm组件中的aboot实现过程中存在提权漏洞,攻击者可利用该漏洞获取权限。
Severity
高
Patch Name
Android Qualcomm组件提权漏洞(CNVD-2016-04846)的补丁
Patch Description
Android on Nexus 6P是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套运行于Nexus 6P(智能手机)中并以Linux为基础的开源操作系统。Qualcomm是使用在其中的一个美国高通(Qualcomm)公司的设备专用的高通组件。
Nexus 6P设备上的Android 2016-07-05之前版本的Qualcomm组件中的aboot实现过程中存在提权漏洞,攻击者可利用该漏洞获取权限。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: https://source.android.com/security/bulletin/2016-07-01.html
Reference
https://source.android.com/security/bulletin/2016-07-01.html
Impacted products
| Name | Google Android(on Nexus 6P devices) <2016-07-05 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2015-8889"
}
},
"description": "Android on Nexus 6P\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u8fd0\u884c\u4e8eNexus 6P\uff08\u667a\u80fd\u624b\u673a\uff09\u4e2d\u5e76\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002Qualcomm\u662f\u4f7f\u7528\u5728\u5176\u4e2d\u7684\u4e00\u4e2a\u7f8e\u56fd\u9ad8\u901a\uff08Qualcomm\uff09\u516c\u53f8\u7684\u8bbe\u5907\u4e13\u7528\u7684\u9ad8\u901a\u7ec4\u4ef6\u3002\r\n\r\nNexus 6P\u8bbe\u5907\u4e0a\u7684Android 2016-07-05\u4e4b\u524d\u7248\u672c\u7684Qualcomm\u7ec4\u4ef6\u4e2d\u7684aboot\u5b9e\u73b0\u8fc7\u7a0b\u4e2d\u5b58\u5728\u63d0\u6743\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u6743\u9650\u3002",
"discovererName": "Google",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttps://source.android.com/security/bulletin/2016-07-01.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-04846",
"openTime": "2016-07-15",
"patchDescription": "Android on Nexus 6P\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u548c\u5f00\u653e\u624b\u6301\u8bbe\u5907\u8054\u76df\uff08\u7b80\u79f0OHA\uff09\u5171\u540c\u5f00\u53d1\u7684\u4e00\u5957\u8fd0\u884c\u4e8eNexus 6P\uff08\u667a\u80fd\u624b\u673a\uff09\u4e2d\u5e76\u4ee5Linux\u4e3a\u57fa\u7840\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edf\u3002Qualcomm\u662f\u4f7f\u7528\u5728\u5176\u4e2d\u7684\u4e00\u4e2a\u7f8e\u56fd\u9ad8\u901a\uff08Qualcomm\uff09\u516c\u53f8\u7684\u8bbe\u5907\u4e13\u7528\u7684\u9ad8\u901a\u7ec4\u4ef6\u3002\r\n\r\nNexus 6P\u8bbe\u5907\u4e0a\u7684Android 2016-07-05\u4e4b\u524d\u7248\u672c\u7684Qualcomm\u7ec4\u4ef6\u4e2d\u7684aboot\u5b9e\u73b0\u8fc7\u7a0b\u4e2d\u5b58\u5728\u63d0\u6743\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Android Qualcomm\u7ec4\u4ef6\u63d0\u6743\u6f0f\u6d1e\uff08CNVD-2016-04846\uff09\u7684\u8865\u4e01",
"products": {
"product": "Google Android(on Nexus 6P devices) \u003c2016-07-05"
},
"referenceLink": "https://source.android.com/security/bulletin/2016-07-01.html",
"serverity": "\u9ad8",
"submitTime": "2016-07-13",
"title": "Android Qualcomm\u7ec4\u4ef6\u63d0\u6743\u6f0f\u6d1e\uff08CNVD-2016-04846\uff09"
}
FKIE_CVE-2015-8889
Vulnerability from fkie_nvd - Published: 2016-07-11 01:59 - Updated: 2025-04-12 10:46
Severity ?
Summary
The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2567A6D5-BBA1-47B2-B1C3-EFABE9408FA9",
"versionEndIncluding": "6.0.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067."
},
{
"lang": "es",
"value": "La implementaci\u00f3n de aboot en los componentes de Qualcomm en Android en versiones anteriores a 2016-07-05 en dispositivos Nexus 6P omite la caracter\u00edstica de recuperaci\u00f3n de PIN, lo que tiene un impacto y vectores de ataque no especificados, tambi\u00e9n conocido como error interno de Android 28822677 y error interno de Qualcomm CR804067."
}
],
"id": "CVE-2015-8889",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-07-11T01:59:27.227",
"references": [
{
"source": "security@android.com",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"source": "security@android.com",
"url": "http://www.securityfocus.com/bid/91628"
},
{
"source": "security@android.com",
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/91628"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
}
],
"sourceIdentifier": "security@android.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2015-8889
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-8889",
"description": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.",
"id": "GSD-2015-8889"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-8889"
],
"details": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.",
"id": "GSD-2015-8889",
"modified": "2023-12-13T01:20:03.477573Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2015-8889",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e",
"refsource": "CONFIRM",
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"name": "91628",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/91628"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "6.0.1",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@android.com",
"ID": "CVE-2015-8889"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e",
"refsource": "CONFIRM",
"tags": [],
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"name": "http://source.android.com/security/bulletin/2016-07-01.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"name": "91628",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/91628"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2016-11-28T19:50Z",
"publishedDate": "2016-07-11T01:59Z"
}
}
}
WID-SEC-W-2025-1426
Vulnerability from csaf_certbund - Published: 2016-07-06 22:00 - Updated: 2025-06-30 22:00Summary
Google Android: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Das Android Betriebssystem von Google ist eine quelloffene Plattform für mobile Geräte. Die Basis bildet der Linux-Kernel.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um beliebigen Programmcode mit den Rechten des Dienstes auszuführen, um seine Rechte zu erweitern, um einen Denial of Service Zustand herbeizuführen und um Informationen offenzulegen.
Betroffene Betriebssysteme
- Android
- Blackberry
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Das Android Betriebssystem von Google ist eine quelloffene Plattform f\u00fcr mobile Ger\u00e4te. Die Basis bildet der Linux-Kernel.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Google Android ausnutzen, um beliebigen Programmcode mit den Rechten des Dienstes auszuf\u00fchren, um seine Rechte zu erweitern, um einen Denial of Service Zustand herbeizuf\u00fchren und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Android\n- Blackberry",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1426 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2016/wid-sec-w-2025-1426.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1426 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1426"
},
{
"category": "external",
"summary": "Android Security Bulletin - July 2016 vom 2016-07-06",
"url": "https://source.android.com/security/bulletin/2016-07-01.html"
},
{
"category": "external",
"summary": "BlackBerry powered by Android Security Bulletin - July 2016 vom 2016-07-06",
"url": "http://support.blackberry.com/kb/articleDetail?articleNumber=000038293"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2009-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00021.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2007-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00020.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2006-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00019.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2005-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00018.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2002-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00016.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:2001-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00015.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:1995-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00009.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2016:1994-1 vom 2016-08-09",
"url": "https://lists.opensuse.org/opensuse-security-announce/2016-08/msg00008.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2017:0193 vom 2017-01-26",
"url": "https://access.redhat.com/errata/RHSA-2017:0193"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2017:0194 vom 2017-01-26",
"url": "https://access.redhat.com/errata/RHSA-2017:0194"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:0605-1 vom 2017-03-03",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20170605-1.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-234 vom 2025-07-01",
"url": "https://www.dell.com/support/kbdoc/000337969"
}
],
"source_lang": "en-US",
"title": "Google Android: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-30T22:00:00.000+00:00",
"generator": {
"date": "2025-07-01T15:23:30.512+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1426",
"initial_release_date": "2016-07-06T22:00:00.000+00:00",
"revision_history": [
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-07-06T22:00:00.000+00:00",
"number": "3",
"summary": "Version nicht vorhanden"
},
{
"date": "2016-08-09T22:00:00.000+00:00",
"number": "4",
"summary": "New remediations available"
},
{
"date": "2016-08-09T22:00:00.000+00:00",
"number": "5",
"summary": "Version nicht vorhanden"
},
{
"date": "2017-01-25T23:00:00.000+00:00",
"number": "6",
"summary": "New remediations available"
},
{
"date": "2017-03-05T23:00:00.000+00:00",
"number": "7",
"summary": "New remediations available"
},
{
"date": "2025-06-30T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Dell aufgenommen"
}
],
"status": "final",
"version": "8"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c19.13",
"product": {
"name": "Dell NetWorker \u003c19.13",
"product_id": "T044954"
}
},
{
"category": "product_version",
"name": "19.13",
"product": {
"name": "Dell NetWorker 19.13",
"product_id": "T044954-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.13"
}
}
},
{
"category": "product_version_range",
"name": "\u003c19.11.0.5",
"product": {
"name": "Dell NetWorker \u003c19.11.0.5",
"product_id": "T044959"
}
},
{
"category": "product_version",
"name": "19.11.0.5",
"product": {
"name": "Dell NetWorker 19.11.0.5",
"product_id": "T044959-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.11.0.5"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "4.4.4",
"product": {
"name": "Google Android 4.4.4",
"product_id": "305867",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:4.4.4"
}
}
},
{
"category": "product_version",
"name": "6",
"product": {
"name": "Google Android 6.0",
"product_id": "317179",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:6.0"
}
}
},
{
"category": "product_version",
"name": "5.1.1",
"product": {
"name": "Google Android 5.1.1",
"product_id": "317341",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:5.1.1"
}
}
},
{
"category": "product_version",
"name": "5.0.2",
"product": {
"name": "Google Android 5.0.2",
"product_id": "318068",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:5.0.2"
}
}
},
{
"category": "product_version",
"name": "6.0.1",
"product": {
"name": "Google Android 6.0.1",
"product_id": "318084",
"product_identification_helper": {
"cpe": "cpe:/o:google:android:6.0.1"
}
}
}
],
"category": "product_name",
"name": "Android"
}
],
"category": "vendor",
"name": "Google"
},
{
"branches": [
{
"category": "product_name",
"name": "BlackBerry BlackBerry",
"product": {
"name": "BlackBerry BlackBerry",
"product_id": "1321",
"product_identification_helper": {
"cpe": "cpe:/h:rim:blackberry:-"
}
}
}
],
"category": "vendor",
"name": "RIM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-3809",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3809"
},
{
"cve": "CVE-2016-3810",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3810"
},
{
"cve": "CVE-2016-3811",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3811"
},
{
"cve": "CVE-2016-3812",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3812"
},
{
"cve": "CVE-2016-3813",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3813"
},
{
"cve": "CVE-2016-3814",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3814"
},
{
"cve": "CVE-2016-3815",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3815"
},
{
"cve": "CVE-2016-3816",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3816"
},
{
"cve": "CVE-2016-3818",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3818"
},
{
"cve": "CVE-2013-7457",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2013-7457"
},
{
"cve": "CVE-2014-9777",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9777"
},
{
"cve": "CVE-2014-9778",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9778"
},
{
"cve": "CVE-2014-9779",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9779"
},
{
"cve": "CVE-2014-9780",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9780"
},
{
"cve": "CVE-2014-9781",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9781"
},
{
"cve": "CVE-2014-9782",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9782"
},
{
"cve": "CVE-2014-9783",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9783"
},
{
"cve": "CVE-2014-9784",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9784"
},
{
"cve": "CVE-2014-9785",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9785"
},
{
"cve": "CVE-2014-9786",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9786"
},
{
"cve": "CVE-2014-9787",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9787"
},
{
"cve": "CVE-2014-9788",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9788"
},
{
"cve": "CVE-2014-9789",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9789"
},
{
"cve": "CVE-2014-9790",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9790"
},
{
"cve": "CVE-2014-9791",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9791"
},
{
"cve": "CVE-2014-9792",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9792"
},
{
"cve": "CVE-2014-9793",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9793"
},
{
"cve": "CVE-2014-9794",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9794"
},
{
"cve": "CVE-2014-9795",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9795"
},
{
"cve": "CVE-2014-9796",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9796"
},
{
"cve": "CVE-2014-9797",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9797"
},
{
"cve": "CVE-2014-9798",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9798"
},
{
"cve": "CVE-2014-9799",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9799"
},
{
"cve": "CVE-2014-9800",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9800"
},
{
"cve": "CVE-2014-9801",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9801"
},
{
"cve": "CVE-2014-9802",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9802"
},
{
"cve": "CVE-2014-9803",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2014-9803"
},
{
"cve": "CVE-2015-8816",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8816"
},
{
"cve": "CVE-2015-8888",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8888"
},
{
"cve": "CVE-2015-8889",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8889"
},
{
"cve": "CVE-2015-8890",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8890"
},
{
"cve": "CVE-2015-8891",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8891"
},
{
"cve": "CVE-2015-8892",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8892"
},
{
"cve": "CVE-2015-8893",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2015-8893"
},
{
"cve": "CVE-2016-0723",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-0723"
},
{
"cve": "CVE-2016-2067",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2067"
},
{
"cve": "CVE-2016-2068",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2068"
},
{
"cve": "CVE-2016-2107",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2107"
},
{
"cve": "CVE-2016-2108",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2108"
},
{
"cve": "CVE-2016-2501",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2501"
},
{
"cve": "CVE-2016-2502",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2502"
},
{
"cve": "CVE-2016-2503",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2503"
},
{
"cve": "CVE-2016-2505",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2505"
},
{
"cve": "CVE-2016-2506",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2506"
},
{
"cve": "CVE-2016-2507",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2507"
},
{
"cve": "CVE-2016-2508",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-2508"
},
{
"cve": "CVE-2016-3741",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3741"
},
{
"cve": "CVE-2016-3742",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3742"
},
{
"cve": "CVE-2016-3743",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3743"
},
{
"cve": "CVE-2016-3744",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3744"
},
{
"cve": "CVE-2016-3745",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3745"
},
{
"cve": "CVE-2016-3746",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3746"
},
{
"cve": "CVE-2016-3747",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3747"
},
{
"cve": "CVE-2016-3748",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3748"
},
{
"cve": "CVE-2016-3749",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3749"
},
{
"cve": "CVE-2016-3750",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3750"
},
{
"cve": "CVE-2016-3751",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3751"
},
{
"cve": "CVE-2016-3752",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3752"
},
{
"cve": "CVE-2016-3753",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3753"
},
{
"cve": "CVE-2016-3754",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3754"
},
{
"cve": "CVE-2016-3755",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3755"
},
{
"cve": "CVE-2016-3756",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3756"
},
{
"cve": "CVE-2016-3757",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3757"
},
{
"cve": "CVE-2016-3758",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3758"
},
{
"cve": "CVE-2016-3759",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3759"
},
{
"cve": "CVE-2016-3760",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3760"
},
{
"cve": "CVE-2016-3761",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3761"
},
{
"cve": "CVE-2016-3762",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3762"
},
{
"cve": "CVE-2016-3763",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3763"
},
{
"cve": "CVE-2016-3764",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3764"
},
{
"cve": "CVE-2016-3765",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3765"
},
{
"cve": "CVE-2016-3766",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3766"
},
{
"cve": "CVE-2016-3767",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3767"
},
{
"cve": "CVE-2016-3768",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3768"
},
{
"cve": "CVE-2016-3769",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3769"
},
{
"cve": "CVE-2016-3770",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3770"
},
{
"cve": "CVE-2016-3771",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3771"
},
{
"cve": "CVE-2016-3772",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3772"
},
{
"cve": "CVE-2016-3773",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3773"
},
{
"cve": "CVE-2016-3774",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3774"
},
{
"cve": "CVE-2016-3775",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3775"
},
{
"cve": "CVE-2016-3792",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3792"
},
{
"cve": "CVE-2016-3793",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3793"
},
{
"cve": "CVE-2016-3794",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3794"
},
{
"cve": "CVE-2016-3795",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3795"
},
{
"cve": "CVE-2016-3796",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3796"
},
{
"cve": "CVE-2016-3797",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3797"
},
{
"cve": "CVE-2016-3798",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3798"
},
{
"cve": "CVE-2016-3799",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3799"
},
{
"cve": "CVE-2016-3800",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3800"
},
{
"cve": "CVE-2016-3801",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3801"
},
{
"cve": "CVE-2016-3802",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3802"
},
{
"cve": "CVE-2016-3803",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3803"
},
{
"cve": "CVE-2016-3804",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3804"
},
{
"cve": "CVE-2016-3805",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3805"
},
{
"cve": "CVE-2016-3806",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3806"
},
{
"cve": "CVE-2016-3807",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3807"
},
{
"cve": "CVE-2016-3808",
"product_status": {
"known_affected": [
"318084",
"T002207",
"317341",
"67646",
"305867",
"T044954",
"1321",
"T044959",
"317179",
"318068"
]
},
"release_date": "2016-07-06T22:00:00.000+00:00",
"title": "CVE-2016-3808"
}
]
}
GHSA-MR3X-JJPJ-926V
Vulnerability from github – Published: 2022-05-17 03:43 – Updated: 2022-05-17 03:43
VLAI?
Details
The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.
Severity ?
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2015-8889"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-07-11T01:59:00Z",
"severity": "HIGH"
},
"details": "The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android internal bug 28822677 and Qualcomm internal bug CR804067.",
"id": "GHSA-mr3x-jjpj-926v",
"modified": "2022-05-17T03:43:57Z",
"published": "2022-05-17T03:43:57Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-8889"
},
{
"type": "WEB",
"url": "https://source.codeaurora.org/quic/la/kernel/lk/commit/?id=fa774e023554427ee14d7a49181e9d4afbec035e"
},
{
"type": "WEB",
"url": "http://source.android.com/security/bulletin/2016-07-01.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/91628"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…