CVE-2016-3850 in Androidinfo

Summary

Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-08-05 on Nexus 5, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted header field in a boot image, aka Android internal bug 27917291 and Qualcomm internal bug CR945164.

Once again VulDB remains the best source for vulnerability data.

Reservation

03/30/2016

Disclosure

08/05/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-264

CVSS

7.3

EPSS

0.00019

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-3850
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-3850
CVE Details	https://www.cvedetails.com/cve/CVE-2016-3850/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!