Yao Jun

**Name of the Vulnerable Software and Affected Versions** Android versions Kernel-3.18 **Description** An elevation of privilege issue in the NVIDIA GPU driver could allow a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. The vulnerability is related to insufficient access control in the NVIDIA GPU driver. **Recommendations** For Android version Kernel-3.18, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Android versions prior to 2016-11-05 **Description** An elevation of privilege issue in the NVIDIA GPU driver could allow a local malicious application to execute arbitrary code within the context of the kernel. This issue may lead to a local permanent device compromise, requiring reflashing the operating system to repair the device. **Recommendations** For versions prior to 2016-11-05, update the Android operating system to a version released on or after 2016-11-05 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android versions prior to 2016-11-05 **Description** An elevation of privilege issue in the NVIDIA GPU driver could allow a local malicious application to execute arbitrary code within the context of the kernel. This issue may lead to a local permanent device compromise, requiring reflashing the operating system to repair the device. **Recommendations** For Android versions prior to 2016-11-05, update the operating system to a version released on or after 2016-11-05 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android versions prior to 2016-11-05 **Description** An issue in the NVIDIA GPU driver could allow a local malicious application to execute arbitrary code within the context of the kernel, potentially leading to a local permanent device compromise. This compromise may require reflashing the operating system to repair the device. **Recommendations** For versions prior to 2016-11-05, update the Android operating system to a version released on or after 2016-11-05 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Android versions prior to 2016-11-05 **Description** An elevation of privilege issue in the NVIDIA GPU driver could allow a local malicious application to execute arbitrary code within the context of the kernel. This issue may lead to a local permanent device compromise, requiring reflashing the operating system to repair the device. **Recommendations** For Android versions prior to 2016-11-05, update the operating system to a version released on or after 2016-11-05 to resolve the issue.