CVE-2016-6715
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-6715
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An elevation of privilege vulnerability in the Framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could allow a local malicious application to record audio without the user's permission. This issue is rated as Moderate because it is a local bypass of user interaction requirements (access to functionality that would normally require either user initiation or user permission.) Android ID: A-29833954.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Android Framework APIs 提权漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。Framework APIs是其中的一个用于创建框架的API组件。 Android中的Framework APIs存在提权漏洞。攻击者可借助恶意的应用程序利用该漏洞记录音频。以下版本受到影响:Android 4.4.4,5.0.2,5.1.1,6.0,6.0.1,7.0。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Google Inc. | Android | Android-4.4.4 | - |
II. Public POCs for CVE-2016-6715
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-6715
请登录查看更多情报信息。
- https://source.android.com/security/bulletin/2016-11-01.htmlx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2016-6715
Same Patch Batch · Google Inc. · 2016-11-25 · 50 CVEs total
| CVE-2016-6739 | Android Qualcomm Camera驱动程序提权漏洞 | |
| CVE-2016-6746 | Google Pixel C NVIDIA GPU驱动程序信息泄露漏洞 | |
| CVE-2016-6750 | Android Qualcomm组件信息泄露漏洞 | |
| CVE-2016-6751 | Android Qualcomm 信息泄露漏洞 | |
| CVE-2016-6752 | Android Qualcomm 信息泄露漏洞 | |
| CVE-2016-6753 | Android kernel 信息泄露漏洞 | |
| CVE-2016-6754 | Android Webview 远程代码执行漏洞 | |
| CVE-2016-6749 | Android Qualcomm组件信息泄露漏洞 | |
| CVE-2016-6741 | Android Qualcomm Camera驱动程序提权漏洞 | |
| CVE-2016-6740 | Android Qualcomm Camera驱动程序提权漏洞 | |
| CVE-2016-6742 | Google Nexus Synaptics touchscreen驱动程序提权漏洞 | |
| CVE-2016-6738 | Android Qualcomm crypto engine驱动程序提权漏洞 | |
| CVE-2016-6737 | Android kernel ION子系统提权漏洞 | |
| CVE-2016-6736 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 | |
| CVE-2016-6735 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 | |
| CVE-2016-6734 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 | |
| CVE-2016-6733 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 | |
| CVE-2016-6732 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 | |
| CVE-2016-6731 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 | |
| CVE-2016-6730 | Google Pixel C NVIDIA GPU驱动程序提权漏洞 |
Showing top 20 of 50 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2016-6715
No comments yet