Описание
The kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, and Android One devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30148243.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:google:android_one:-:*:*:*:*:*:*:*
cpe:2.3:h:google:nexus_5:-:*:*:*:*:*:*:*
cpe:2.3:h:google:nexus_5x:-:*:*:*:*:*:*:*
cpe:2.3:h:google:nexus_6:-:*:*:*:*:*:*:*
cpe:2.3:h:google:nexus_6p:-:*:*:*:*:*:*:*
cpe:2.3:h:google:nexus_9:-:*:*:*:*:*:*:*
cpe:2.3:h:google:nexus_player:-:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00063
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
The kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, Nexus 9, Nexus Player, and Android One devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30148243.
EPSS
Процентиль: 20%
0.00063
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-200