PT-2017-1049 · Google+1 · Android+1

Chi Zhang

Published

2017-01-12

Updated

2017-10-19

CVE-2016-6789

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.18

Description An elevation of privilege issue in the NVIDIA libomx library could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application.

Recommendations For Android version Kernel-3.18, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

BDU:2017-00118

CVE-2016-6789

Affected Products

Android

Nvidia Libomx

PT-2017-1049 · Google+1 · Android+1

CVE-2016-6789

Weakness Enumeration

Related Identifiers

Affected Products

References · 6