Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-5348

EPSS 14.60% · P95
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-5348

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The GPS component in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 allows man-in-the-middle attackers to cause a denial of service (memory consumption, and device hang or reboot) via a large xtra.bin or xtra2.bin file on a spoofed Qualcomm gpsonextra.net or izatcloud.net host, aka internal bug 29555864.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Android GPS组件安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。GPS是其中的一个全球定位组件。 Android中的GPS组件存在安全漏洞。攻击者可利用该漏洞实施中间人攻击,造成拒绝服务(内存耗尽,设备挂起或重启)。以下版本受到影响;Android 4.4.4之前的4.x版本,5.0.2之前的5.0.x版本,5.1.1之前的5.1.x版本,2016-10-01之前的6.x版本,2016-10-01之前的7.0版本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2016-5348

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2016-5348

Please Login to view more intelligence information

Same Patch Batch · n/a · 2016-10-10 · 108 CVEs total

CVE-2016-3927Android Qualcomm组件安全漏洞
CVE-2016-3940Android Synaptics触屏驱动程序安全漏洞
CVE-2016-3939Android Qualcomm video驱动程序安全漏洞
CVE-2016-3938Android Qualcomm video驱动程序安全漏洞
CVE-2016-3937Android MediaTek video驱动程序安全漏洞
CVE-2016-3936Android MediaTek video驱动程序安全漏洞
CVE-2016-3935Android Qualcomm密码引擎驱动程序整数溢出漏洞
CVE-2016-3934Android Qualcomm摄像头驱动程序安全漏洞
CVE-2016-3933Android Mediaserver 安全漏洞
CVE-2016-3932Android Mediaserver 安全漏洞
CVE-2016-3931Android Qualcomm QSEE Communicator驱动程序安全漏洞
CVE-2016-3930Android NVIDIA MMC测试驱动程序安全漏洞
CVE-2016-3929Android Qualcomm组件安全漏洞
CVE-2016-3928Android MediaTek video驱动程序安全漏洞
CVE-2016-3916Android Camera服务安全漏洞
CVE-2016-3920Android Mediaserver 拒绝服务漏洞
CVE-2016-3918Android AOSP Mail 安全漏洞
CVE-2016-3917Android 安全漏洞
CVE-2016-3921Android Framework Listener 安全漏洞
CVE-2016-3915Android Camera服务安全漏洞

Showing top 20 of 108 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2016-5348

No comments yet

Leave a comment