CVE-2015-6602

CVE-2015-6602 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

libutils in Android through 5.1.1 LMY48M allows remote attackers to execute arbitrary code via crafted metadata in a (1) MP3 or (2) MP4 file, as demonstrated by an attack against use of libutils by libstagefright in Android 5.x.

Learn more about our Cis Benchmark Audit For Google Android.