CVE-2016-8480

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.10 through Kernel-3.18

Description The issue is related to an elevation of privilege vulnerability in the Qualcomm Secure Execution Environment Communicator driver. This could allow a local malicious application to execute arbitrary code within the context of the kernel. The vulnerability is rated as High because it first requires compromising a privileged process. It is associated with insufficient access control in the driver, which could be exploited by a remote attacker to elevate privileges and execute arbitrary code in the kernel context using a local malicious application.

Recommendations For Android versions Kernel-3.10 through Kernel-3.18, at the moment, there is no information about a newer version that contains a fix for this vulnerability.