CVE-2016-6720 — Vulnetix

Try Vulnetix Request Demo

CVE-2016-6720 PUBLISHED

An information disclosure vulnerability in libstagefright in Mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-11-01, and 7.0 before 2016-11-01 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Android ID: A-29422020.

EPSS 0.11% · 29.4th percentile

Risk Scores

EPSS Score

0.11%

29.4th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:16.04:LTS	android	0, 20150818-1500-0ubuntu2, 20150818-1500-0ubuntu3

Timeline

Nov 8, 2016 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2016-6720 third-party-advisory
https://android.googlesource.com/platform/frameworks/av/+/0f177948ae2640bfe4d70f8e4248e106406b3b0a third-party-advisory
https://android.googlesource.com/platform/frameworks/av/+/2c75e1c3b98e4e94f50c63e2b7694be5f948477c third-party-advisory
https://android.googlesource.com/platform/frameworks/av/+/640b04121d7cd2cac90e2f7c82b97fce05f074a5 third-party-advisory
https://android.googlesource.com/platform/frameworks/av/+/7c88b498fda1c2b608a9dd73960a2fd4d7b7e3f7 third-party-advisory
https://source.android.com/security/bulletin/2016-11-01.html third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2016-6720 third-party-advisory

Open in Interactive Console →