CVE-2016-8425INC Android vulnerability

CWE-2643 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 53.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Google INC AndroidLinux KernelGoogle Android
Timeline
PublishedJan 12
Latest updateMay 17

Description

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-31797770. References: N-CVE-2016-8425.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5google_inc/androidKernel-3.10

🔴Vulnerability Details

1
GHSA
GHSA-x662-rxwh-44vj: An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the conte2022-05-17

📋Vendor Advisories

1
Android
CVE-2016-8425: Android Security Bulletin 2017-01-01 CVE: CVE-2016-8425 Severity: CRITICAL References: A-31797770* N-CVE-2016-84252017-01-01