CVE-2016-8467

Published: Jan 13, 2017Modified: May 13, 2026

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

An elevation of privilege vulnerability in the bootloader could enable a local attacker to execute arbitrary modem commands on the device. This issue is rated as High because it is a local permanent denial of service (device interoperability: completely permanent or requiring re-flashing the entire operating system). Product: Android. Versions: N/A. Android ID: A-30308784.

Affected (1)

Products: Google: Android

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Google Android	Up to 7.1.0

Related CWEs

References (6)

http://www.securityfocus.com/bid/95250

Source: security@android.com

https://securityintelligence.com/android-vulnerabilities-attacking-nexus-6-and-6p-custom-boot-modes/

Source: security@android.com

https://source.android.com/security/bulletin/2017-01-01.html

Source: security@android.com

PatchVendor Advisory

http://www.securityfocus.com/bid/95250

Source: af854a3a-2127-422b-91ae-364da2661108

https://securityintelligence.com/android-vulnerabilities-attacking-nexus-6-and-6p-custom-boot-modes/

Source: af854a3a-2127-422b-91ae-364da2661108

https://source.android.com/security/bulletin/2017-01-01.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.