CVE-2016-8461

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Android Kernel-3.18
Vendor: CVE Published:; 12 January 2017

Summary

An information disclosure vulnerability in the bootloader could enable a local attacker to access data outside of its permission level. This issue is rated as High because it could be used to access sensitive data. Product: Android. Versions: Kernel-3.18. Android ID: A-32369621.

Affected Version(s)

Android Kernel-3.18 Android Kernel-3.18

References

https://source.android.com/security/bulletin/2017-01-01.html

x_refsource_CONFIRM

http://www.securityfocus.com/bid/95237

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 12, 2017
Vulnerability Reserved
Oct 5, 2016

Collectors

NVD DatabaseMitre Database