Shodan
Vulnerabilities
Vulnerable Software
Google:  >> Android  >> 4.4.2  Security Vulnerabilities
CVE-2016-3850
Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-08-05 on Nexus 5, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted header field in a boot image, aka Android internal bug 27917291 and Qualcomm internal bug CR945164.
CVSS Score
7.3
EPSS Score
0.0
Published
2016-08-05
CVE-2016-3849
The ION driver in Android before 2016-08-05 on Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28939740.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-08-05
CVE-2016-3848
The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28919417.
CVSS Score
7.0
EPSS Score
0.001
Published
2016-08-05
CVE-2016-3847
The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 28871433.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-08-05
CVE-2016-3846
The Serial Peripheral Interface driver in Android before 2016-08-05 on Nexus 5X and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 28817378.
CVSS Score
7.0
EPSS Score
0.001
Published
2016-08-05
CVE-2016-3845
The video driver in the kernel in Android before 2016-08-05 on Nexus 5 devices allows attackers to gain privileges via a crafted application, aka internal bug 28399876.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-08-05
CVE-2016-3843
Android before 2016-08-05 does not properly restrict code execution in a kernel context, which allows attackers to gain privileges via a crafted application, as demonstrated by the kernel performance subsystem and the Qualcomm performance component, aka Android internal bugs 28086229 and 29119870 and Qualcomm internal bug CR1011071.
CVSS Score
7.8
EPSS Score
0.002
Published
2016-08-05
CVE-2016-3844
mediaserver in Android before 2016-08-05 on Nexus 9 and Pixel C devices allows attackers to gain privileges via a crafted application, aka internal bug 28299517.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-08-05
CVE-2016-3842
The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28377352 and Qualcomm internal bug CR1002974.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-08-05
CVE-2016-3840
Conscrypt in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-05 does not properly identify session reuse, which allows remote attackers to execute arbitrary code via unspecified vectors, aka internal bug 28751153.
CVSS Score
9.8
EPSS Score
0.023
Published
2016-08-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved