CVE-2016-5862

HIGH

Qualcomm - Device Restart

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-5862. PoCs published by codecat007.

AI-analyzed exploit summary The PoC exploits CVE-2016-5862, a vulnerability in the Android sound driver, by manipulating the speaker function control via ioctl calls. It demonstrates a potential denial-of-service (DoS) or privilege escalation by writing invalid data to the speaker control element.

Description

When a control related to codec is issued from userspace in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, the type casting is done to the container structure instead of the codec's individual structure, resulting in a device restart after kernel crash occurs.

Exploits (1)

github WORKING POC 8 stars
by codecat007 · cpoc
https://github.com/codecat007/cvehub/tree/main/android/securityPatch/CVE-2016-5862

The PoC exploits CVE-2016-5862, a vulnerability in the Android sound driver, by manipulating the speaker function control via ioctl calls. It demonstrates a potential denial-of-service (DoS) or privilege escalation by writing invalid data to the speaker control element.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Android kernel (sound driver)
No auth needed
Prerequisites: Access to /dev/snd/controlC0 · Kernel with vulnerable sound driver
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/98194
Patch, Vendor Advisory x_refsource_confirm
https://source.android.com/security/bulletin/2017-05-01

Scores

CVSS v3 7.0
EPSS 0.0006
EPSS Percentile 18.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-264
Status published
Products (2)
google/android
Qualcomm, Inc./All Qualcomm products Android for MSM, Firefox OS for MSM, QRD Android
Published Aug 16, 2017
Tracked Since Feb 18, 2026