Privilege Escalation via Widevine QSEE TrustZone Application in Android

CVE-2015-6639 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875.

Learn more about our Cis Benchmark Audit For Google Android.