CVE-2016-2496

The Framework UI permission-dialog implementation in Android 6.x before 2016-06-01 allows attackers to conduct tapjacking attacks and access arbitrary private-storage files by creating a partially overlapping window, aka internal bug 26677796.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2016-06-13 01:59

Updated : 2016-06-14 13:10


NVD link : CVE-2016-2496

Mitre link : CVE-2016-2496


JSON object : View

Products Affected

google

  • android
CWE
CWE-264

Permissions, Privileges, and Access Controls