Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2016-0808
CVE information
Published
Last Modified
CVSSv2.0 Severity
CVSSv3.1 Severity
Impact Analysis
Description
Integer overflow in the getCoverageFormat12 function in CmapCoverage.cpp in the Minikin library in Android 5.x before 5.1.1 LMY49G and 6.x before 2016-02-01 allows attackers to cause a denial of service (continuous rebooting) via an application that triggers loading of a crafted TTF font, aka internal bug 25645298..
CVSSv2.0 Score
- Severity
- Medium
- Base Score
- 4.9/10
- Exploit Score
- 3.9/10
- Access Vector
- Local
- Access Complexity
- Low
- Authentication Required
- None
- Impact Score
- 6.9/10
- Confidentiality Impact
- None
- Availability Impact
- Complete
- Integrity Impact
- None
CVSSv3.1 Score
- Severity
- Medium
- Base Score
- 6.2/10
- Exploit Score
- 2.5/10
- Access Vector
- Local
- Access Complexity
- Low
- Privileges Required
- None
- Impact Score
- 3.6/10
- Confidentiality Impact
- None
- Availability Impact
- High
- Integrity Impact
- None
- Scope
- Unchanged
- User Interaction
- None
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:o:google:android:5.1.0:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:5.0.2:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:5.0.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:5.0:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:5.1.1:*:*:*:*:*:*:* |
Yes
|
- | - | |
cpe:2.3:o:google:android:5.1:*:*:*:*:*:*:* |
Yes
|
- | - |