CVE-2016-3853

EUVD-2016-4866
Google Play services in Android before 2016-08-05 on Nexus devices allow local users to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 26803208.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
googleandroid
𝑥
≤ 6.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://source.android.com/security/bulletin/2016-08-01.html
http://www.securityfocus.com/bid/92255
http://source.android.com/security/bulletin/2016-08-01.html
http://www.securityfocus.com/bid/92255