CVE-2016-6689

Опубликовано: 10 окт. 2016

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

Binder in the kernel in Android before 2016-10-05 on Nexus devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30768347.

Ссылки

http://source.android.com/security/bulletin/2016-10-01.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/93323
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/40515/
http://source.android.com/security/bulletin/2016-10-01.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/93323
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/40515/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

Версия до 7.0 (включая)

EPSS

Процентиль: 74%

0.00797

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2016-6689

CVSS3: 5.5

ubuntu

больше 9 лет назад

Binder in the kernel in Android before 2016-10-05 on Nexus devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30768347.

GHSA-mx97-4mpx-m22f

CVSS3: 5.5

github

больше 3 лет назад

Binder in the kernel in Android before 2016-10-05 on Nexus devices allows attackers to obtain sensitive information via a crafted application, aka internal bug 30768347.

EPSS

Процентиль: 74%

0.00797

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200