CVEs-PoC/2016/CVE-2016-2462.md at 01bfa5a620d96dd8964e9feca43efe76742cf6f0

mirror of https://github.com/0xMarcio/cve.git synced 2026-03-27 00:50:19 +01:00

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

OpenSSLCipher.java in Conscrypt in Android 6.x before 2016-05-01 mishandles updates of the Additional Authenticated Data (AAD) array, which allows attackers to spoof message authentication via unspecified vectors, aka internal bug 27371173.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/chnzzh/OpenSSL-CVE-lib

744 B Raw Blame History

CVE-2016-2462

Description

POC

Reference

Github

744 B

Raw Blame History