CVE-2016-8397

An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android. Versions: Kernel-3.10. Android ID: A-31385953. References: N-CVE-2016-8397.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
google_androidCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
VendorProductVersion
linuxlinux_kernel
3.10
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://nvidia.custhelp.com/app/answers/detail/a_id/4561
http://www.securityfocus.com/bid/94714
https://source.android.com/security/bulletin/2016-12-01.html
http://nvidia.custhelp.com/app/answers/detail/a_id/4561
http://www.securityfocus.com/bid/94714
https://source.android.com/security/bulletin/2016-12-01.html