{ "name": "CVE-2016-0818", "CVE": [ [ "CVE-2016-0818", "Bulletin-CVE-2016-0818" ] ], "Coordinated_disclosure": "unknown", "Categories": [ "Elevation of Privilege in Conscrypt" ], "Details": [ [ "The caching functionality in the TrustManagerImpl class in TrustManagerImpl.java in Conscrypt in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 mishandles the distinction between an intermediate CA and a trusted root CA, which allows man-in-the-middle attackers to spoof servers by leveraging access to an intermediate CA to issue a certificate, aka internal bug 26232830.", "NIST-CVE-2016-0818" ] ], "Discovered_on": [], "Discovered_by": [], "Submission": [ { "by": "dcc52", "on": "2019-07-29" } ], "Reported_on": [ [ "2016-03-01", "Bulletin-CVE-2016-0818" ] ], "Fixed_on": [ [ "2015-12-20", "[2]" ] ], "Fix_released_on": [], "Affected_versions": [ [ "4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1", "Bulletin-CVE-2016-0818" ] ], "Affected_devices": [], "Affected_versions_regexp": [ "(4\\.4\\.4)|(5\\.0\\.2)|(5\\.1\\.1)|(6\\.0\\.[0-9])|(6\\.0\\.1)" ], "Affected_manufacturers": [ [ "all", "Bulletin-CVE-2016-0818" ] ], "Fixed_versions": [ [ "4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1", "Bulletin-CVE-2016-0818" ] ], "Fixed_versions_regexp": [ "(4\\.4\\.4)|(5\\.0\\.2)|(5\\.1\\.1)|(6\\.0\\.[0-9])|(6\\.0\\.1)" ], "references": { "ANDROID-26232830": { "url": "https://android.googlesource.com/platform/external/conscrypt/+/c4ab1b959280413fb11bf4fd7f6b4c2ba38bd779" }, "[2]": { "url": "https://android.googlesource.com/platform/external/conscrypt/+/4c9f9c2201116acf790fca25af43995d29980ee0" }, "NIST-CVE-2016-0818": { "url": "https://nvd.nist.gov/vuln/data-feeds" }, "Bulletin-CVE-2016-0818": { "url": "https://source.android.com/security/bulletin/2016-03-01.html" } }, "Surface": [ "remote" ], "Vector": [ "bad-access-control" ], "Target": [ "system-component" ], "Channel": [ "remote" ], "Condition": [ "user-visits-webpage" ], "Privilege": [ "access-to-data" ], "CWE": [ [ "CWE-254", "NIST-CVE-2016-0818" ] ] }