CVE-2016-8467
https://notcve.org/view.php?id=CVE-2016-8467
An elevation of privilege vulnerability in the bootloader could enable a local attacker to execute arbitrary modem commands on the device. This issue is rated as High because it is a local permanent denial of service (device interoperability: completely permanent or requiring re-flashing the entire operating system). Product: Android. Versions: N/A. Android ID: A-30308784. • http://www.securityfocus.com/bid/95250 https://securityintelligence.com/android-vulnerabilities-attacking-nexus-6-and-6p-custom-boot-modes https://source.android.com/security/bulletin/2017-01-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2016-8472
https://notcve.org/view.php?id=CVE-2016-8472
An information disclosure vulnerability in the MediaTek driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: N/A. Android ID: A-31531758. • http://www.securityfocus.com/bid/95235 https://source.android.com/security/bulletin/2017-01-01.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2016-8433
https://notcve.org/view.php?id=CVE-2016-8433
An elevation of privilege vulnerability in the MediaTek driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-31750190. • http://www.securityfocus.com/bid/95253 https://source.android.com/security/bulletin/2017-01-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2016-8447
https://notcve.org/view.php?id=CVE-2016-8447
An elevation of privilege vulnerability in MediaTek components, including the thermal driver and video driver, could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: N/A. Android ID: A-31749463. • http://www.securityfocus.com/bid/95229 https://source.android.com/security/bulletin/2017-01-01.html • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2016-8423
https://notcve.org/view.php?id=CVE-2016-8423
An elevation of privilege vulnerability in the Qualcomm bootloader could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: N/A. Android ID: A-31399736. • http://www.securityfocus.com/bid/95241 https://source.android.com/security/bulletin/2017-01-01.html • CWE-264: Permissions, Privileges, and Access Controls •