NVD

Id
21420  
Name
CVE-2016-6754  
Description
A remote code execution vulnerability in Webview in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-05 could enable a remote attacker to execute arbitrary code when the user is navigating to a website. This issue is rated as High due to the possibility of remote code execution in an unprivileged process. Android ID: A-31217937.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2016-11-25  
Modified Date
2016-12-23  
Seq
2016-6754  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
115835 21420 CVE-2016-6754 94204  View
115836 21420 CVE-2016-6754 https://source.android.com/security/bulletin/2016-11-01.html  View
115837 21420 CVE-2016-6754 40846  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
5242 JVNDB-2016-006015 Android の Webview におけるリモートでコードを実行される脆弱性 Android の Webview には、ユーザが Web サイトにナビゲートする際、リモートでコードを実行される脆弱性が存在します。 CVE-2016-6754 93261 CVE-2016-6754 21420 6.8 8.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-006015.html 2016-11-07 2016-11-29 View