CVE-2016-8431INC Android vulnerability

CWE-2643 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 54.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Google INC AndroidLinux KernelGoogle Android
Timeline
PublishedJan 12
Latest updateMay 17

Description

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.18. Android ID: A-32402179. References: N-CVE-2016-8431.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5google_inc/androidKernel-3.18

🔴Vulnerability Details

1
GHSA
GHSA-6xgp-g8jw-5rvv: An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the conte2022-05-17

📋Vendor Advisories

1
Android
CVE-2016-8431: Android Security Bulletin 2017-01-01 CVE: CVE-2016-8431 Severity: CRITICAL References: A-32402179* N-CVE-2016-84312017-01-01