Vulnerability Database

296,223

Total vulnerabilities in the database

CVE-2016-3850

Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-08-05 on Nexus 5, 5X, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted header field in a boot image, aka Android internal bug 27917291 and Qualcomm internal bug CR945164.

  • Published: Aug 5, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-3850
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.3
  • AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6.9
  • AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
google / android - 6.0.1.x