{ "dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": { "state": "PUBLISHED", "cveId": "CVE-2015-6647", "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", "assignerShortName": "google_android", "dateUpdated": "2025-02-13T16:27:13.475Z", "dateReserved": "2015-08-21T00:00:00.000Z", "datePublished": "2016-01-06T00:00:00.000Z" }, "containers": { "cna": { "providerMetadata": { "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", "shortName": "google_android", "dateUpdated": "2023-05-30T17:06:26.791Z" }, "descriptions": [ { "lang": "en", "value": "The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24441554." } ], "affected": [ { "vendor": "n/a", "product": "n/a", "versions": [ { "version": "n/a", "status": "affected" } ] } ], "references": [ { "name": "1034592", "tags": [ "vdb-entry" ], "url": "http://www.securitytracker.com/id/1034592" }, { "url": "http://source.android.com/security/bulletin/2016-01-01.html" }, { "name": "20230530 CVE-2022-48335 - Buffer Overflow in Widevine Trustlet (PRDiagVerifyProvisioning @ 0x5f90)", "tags": [ "mailing-list" ], "url": "http://seclists.org/fulldisclosure/2023/May/26" }, { "url": "http://packetstormsecurity.com/files/172637/Widevine-Trustlet-5.x-6.x-7.x-PRDiagVerifyProvisioning-Buffer-Overflow.html" } ], "problemTypes": [ { "descriptions": [ { "type": "text", "lang": "en", "description": "n/a" } ] } ], "datePublic": "2016-01-04T00:00:00.000Z" }, "adp": [ { "providerMetadata": { "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T07:29:24.506Z" }, "title": "CVE Program Container", "references": [ { "name": "1034592", "tags": [ "vdb-entry", "x_transferred" ], "url": "http://www.securitytracker.com/id/1034592" }, { "url": "http://source.android.com/security/bulletin/2016-01-01.html", "tags": [ "x_transferred" ] }, { "name": "20230530 CVE-2022-48335 - Buffer Overflow in Widevine Trustlet (PRDiagVerifyProvisioning @ 0x5f90)", "tags": [ "mailing-list", "x_transferred" ], "url": "http://seclists.org/fulldisclosure/2023/May/26" }, { "url": "http://packetstormsecurity.com/files/172637/Widevine-Trustlet-5.x-6.x-7.x-PRDiagVerifyProvisioning-Buffer-Overflow.html", "tags": [ "x_transferred" ] } ] } ] } }