CVE-2015-3878

Name of the Vulnerable Software and Affected Versions Android versions 5.x before 5.1.1 LMY48T Android versions 6.0 before 2015-10-01

Description The issue is related to the Media Projection component in Android, which has inadequate access control to certain features. This allows attackers to bypass the intended screen-recording warning feature and obtain sensitive screen-snapshot information via a crafted application.

Recommendations For Android versions 5.x before 5.1.1 LMY48T, update to version 5.1.1 LMY48T or later. For Android versions 6.0 before 2015-10-01, ensure that all updates after 2015-10-01 are applied. As a temporary workaround, consider restricting the use of the Media Projection feature until a patch is available.