CVE-2015-6612

Google Android < 5.1.1 - Access Control

Title source: rule

Description

libmedia in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to gain privileges via a crafted application, aka internal bug 23540426.

Exploits (2)

nomisec WORKING POC 23 stars

by secmob · poc

https://github.com/secmob/CVE-2015-6612

View Code ZIP pw:eip

nomisec STUB 16 stars

by flankerhqd · poc

https://github.com/flankerhqd/cve-2015-6612poc-forM

View Code ZIP pw:eip

References (2)

Core 2

Core References

Vendor Advisory mailing-list x_refsource_mlist

https://groups.google.com/forum/message/raw?msg=android-security-updates/n1aw2MGce4E/jhpVEWDUCAAJ

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1034049

Scores

EPSS 0.0772

EPSS Percentile 92.0%

Details

CWE

CWE-264

Status published

Products (2)

google/android 6.0

google/android 5.0 - 5.1.1

Published Nov 03, 2015

Tracked Since Feb 18, 2026