CVE-2016-2421

Published: Apr 18, 2016Modified: May 6, 2026

6.1

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Exploitability: 0.9 / Impact: 5.2

Source: NVD

Description

Setup Wizard in Android 5.1.x before 5.1.1 and 6.x before 2016-04-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 26154410.

Affected (4)

Products: Google: Android

Google

1 product

Android

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Google Android	Version 5.1.0
Google Android	Version 5.1
Google Android	Version 6.0.1
Google Android	Version 6.0

Related CWEs

CWE-264

References (2)

http://source.android.com/security/bulletin/2016-04-02.html

Source: security@android.com

PatchVendor Advisory

http://source.android.com/security/bulletin/2016-04-02.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.