Back to search
CVE-2016-6702
Published: Nov 25, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
A remote code execution vulnerability in libjpeg in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable an attacker using a specially crafted file to execute arbitrary code in the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses libjpeg. Android ID: A-30259087.
| Vendor | Product | Versions |
|---|---|---|
Google Inc. | Android | affected Android-4.4.4affected Android-5.0.2affected Android-5.1.1 |
References
https://source.android.com/security/bulletin/2016-11-01.html
x_refsource_CONFIRM
94160
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now