CVE-2016-2465

HIGH

Qualcomm video driver - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-2465. PoCs published by ScottyBauer.

AI-analyzed exploit summary The repository contains a functional PoC for CVE-2016-2465 and CVE-2016-2489, targeting arbitrary kernel write and stack overflow vulnerabilities in the Android kernel's mdss_debug driver. The code demonstrates exploitation via debugfs entries without bounds checking.

Description

The Qualcomm video driver in Android before 2016-06-01 on Nexus 5, 5X, 6, and 6P devices allows attackers to gain privileges via a crafted application, aka internal bug 27407865.

Exploits (1)

github WORKING POC 682 stars

by ScottyBauer · cpoc

https://github.com/ScottyBauer/Android_Kernel_CVE_POCs/tree/master/CVE-2016-2465-AND-CVE-2016-2489.c

View Code ZIP pw:eip

The repository contains a functional PoC for CVE-2016-2465 and CVE-2016-2489, targeting arbitrary kernel write and stack overflow vulnerabilities in the Android kernel's mdss_debug driver. The code demonstrates exploitation via debugfs entries without bounds checking.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Android kernel (msm driver, versions affected by CVE-2016-2465 and CVE-2016-2489)

No auth needed

Prerequisites: Access to debugfs entries (/sys/kernel/debug/mdp/perf_mode and /sys/kernel/debug/mdp/perf/disable_panic) · Kernel with vulnerable mdss_debug driver

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548 - Abuse Elevation Control Mechanism

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_confirm

http://source.android.com/security/bulletin/2016-06-01.html

Scores

CVSS v3 7.8

EPSS 0.0050

EPSS Percentile 38.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published

Products (1)

google/android < 6.0.1

Published Jun 13, 2016

Tracked Since Feb 18, 2026