CVE-2015-6618

Published: Dec 8, 2015Modified: May 6, 2026

4.3

Vector

AV:A/AC:H/Au:N/C:P/I:P/A:P

Exploitability: 3.2 / Impact: 6.4

Source: NVD

Description

Bluetooth in Android 4.4 and 5.x before 5.1.1 LMY48Z allows user-assisted remote attackers to execute arbitrary code by leveraging access to the local physical environment, aka internal bug 24595992.

Affected (3)

Products: Google: Android

Google

1 product

Android

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Google Android	Version 4.4
Google Android	Version 5.0
Google Android	Version 5.1

Related CWEs

CWE-254

References (2)

http://source.android.com/security/bulletin/2015-12-01.html

Source: security@android.com

Vendor Advisory

http://source.android.com/security/bulletin/2015-12-01.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.