Main Vulnerability Database Exploits ID:4534 - Exploit for Permissions, Privileges, and Access Controls in Google Android - CVE-2015-6639

ID:4534 - Exploit for Permissions, Privileges, and Access Controls in Google Android - CVE-2015-6639

Published: September 1, 2020

Vulnerability identifier: #VU40548

Vulnerability risk: High

CVE-ID: CVE-2015-6639

CWE-ID: CWE-264

Exploitation vector: Remote access

Vulnerable software:
Google Android

Link to public exploit:

https://github.com/laginimaineb/cve-2015-6639

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875.

Remediation

Install update from vendor's website.

ID:4534 - Exploit for Permissions, Privileges, and Access Controls in Google Android - CVE-2015-6639

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human