CVE-2016-3850

Name of the Vulnerable Software and Affected Versions Android versions prior to 2016-08-05

Description The issue is caused by an integer overflow in the app/aboot/aboot.c file of the Qualcomm bootloader in Android. This can be exploited by a local attacker using a specially crafted boot image to gain elevated privileges. The vulnerability affects Nexus devices, including 5, 5X, 6P, and 7 (2013).

Recommendations For Android versions prior to 2016-08-05, update the operating system to a version released after 2016-08-05 to resolve the issue. As a temporary workaround, consider restricting local access to the device to minimize the risk of exploitation.