libstagefright in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows remote attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24623447.
References
Link | Resource |
---|---|
http://source.android.com/security/bulletin/2015-12-01.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-12-08 15:59
Updated : 2019-02-12 11:56
NVD link : CVE-2015-6631
Mitre link : CVE-2015-6631
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
- android