CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8429
https://notcve.org/view.php?id=CVE-2016-8429
12 Jan 2017 — An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-32160775. • http://nvidia.custhelp.com/app/answers/detail/a_id/4561 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8473
https://notcve.org/view.php?id=CVE-2016-8473
12 Jan 2017 — An information disclosure vulnerability in the STMicroelectronics driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10. Android ID: A-31795790. • http://www.securityfocus.com/bid/95233 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8440
https://notcve.org/view.php?id=CVE-2016-8440
12 Jan 2017 — Possible buffer overflow in SMMU system call. Improper input validation in ADSP SID2CB system call may result in hypervisor memory overwrite. Product: Android. Versions: Kernel 3.18. Android ID: A-31625306. • http://www.securityfocus.com/bid/95227 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8432
https://notcve.org/view.php?id=CVE-2016-8432
12 Jan 2017 — An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.18. Android ID: A-32447738. • http://www.securityfocus.com/bid/95236 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8443
https://notcve.org/view.php?id=CVE-2016-8443
12 Jan 2017 — Possible unauthorized memory access in the hypervisor. Incorrect configuration provides access to subsystem page tables. Product: Android. Versions: Kernel 3.18. Android ID: A-32576499. • http://www.securityfocus.com/bid/95227 • CWE-285: Improper Authorization •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8465
https://notcve.org/view.php?id=CVE-2016-8465
12 Jan 2017 — An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and is mitigated by current platform configurations. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32474971. • http://www.securityfocus.com/bid/95242 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8434
https://notcve.org/view.php?id=CVE-2016-8434
12 Jan 2017 — An elevation of privilege vulnerability in the Qualcomm GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-32125137. • http://www.securityfocus.com/bid/95257 • CWE-284: Improper Access Control •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2017-0404
https://notcve.org/view.php?id=CVE-2017-0404
12 Jan 2017 — An elevation of privilege vulnerability in the kernel sound subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-32510733. • http://www.securityfocus.com/bid/95281 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8460
https://notcve.org/view.php?id=CVE-2016-8460
12 Jan 2017 — An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android. Versions: Kernel-3.10. Android ID: A-31668540. • http://www.securityfocus.com/bid/95249 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8430
https://notcve.org/view.php?id=CVE-2016-8430
12 Jan 2017 — An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Product: Android. Versions: Kernel-3.10. Android ID: A-32225180. • http://nvidia.custhelp.com/app/answers/detail/a_id/4561 • CWE-264: Permissions, Privileges, and Access Controls •