PT-2016-1010 · Imagination Technologies+1 · Imagination Technologies Driver+1

Published

2016-01-06

Updated

2016-12-07

CVE-2015-6638

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Imagination Technologies driver versions prior to 5.1.1 LMY49F Imagination Technologies driver versions prior to 2016-01-01 in Android 6.0

Description The issue is related to insufficient access control in the Imagination Technologies driver in the Android operating system. It allows a remote attacker to elevate privileges using a specially crafted application.

Recommendations For versions prior to 5.1.1 LMY49F, update to version 5.1.1 LMY49F or later to resolve the issue. For versions prior to 2016-01-01 in Android 6.0, ensure that all updates up to at least 2016-01-01 are applied to mitigate the risk.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2016-00073

CVE-2015-6638

Affected Products

Android

Imagination Technologies Driver

PT-2016-1010 · Imagination Technologies+1 · Imagination Technologies Driver+1

CVE-2015-6638

Weakness Enumeration

Related Identifiers

Affected Products

References · 7