CVE-2015-6628
Android < 5.1.1 LMY48Z and 6.0 < 2015-12-01 - Exposure of Sensitive Information via Media Framework
Title source: llmDescription
Media Framework in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 24074485.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://source.android.com/security/bulletin/2015-12-01.html
Scores
EPSS
0.0046
EPSS Percentile
36.6%
Details
CWE
CWE-200
Status
published
Products (2)
google/android
6.0
google/android
5.0 - 5.1.1
Published
Dec 08, 2015
Tracked Since
Feb 18, 2026