CVE-2016-6690

MEDIUM

Android < 7.0 - Denial of Service via Sound Driver

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-6690. PoCs published by codecat007.

AI-analyzed exploit summary The repository contains a functional PoC for CVE-2016-6690, a local privilege escalation vulnerability in the Android kernel. The exploit writes crafted data to a debugfs file to trigger the vulnerability, tested on Nexus 5X with Android 6.0.1.

Description

The sound driver in the kernel in Android before 2016-10-05 on Nexus 5, Nexus 5X, Nexus 6, Nexus 6P, and Nexus Player devices allows attackers to cause a denial of service (reboot) via a crafted application, aka internal bug 28838221.

Exploits (1)

github WORKING POC 8 stars
by codecat007 · cpoc
https://github.com/codecat007/cvehub/tree/main/android/kernel/cve-2016-6690

The repository contains a functional PoC for CVE-2016-6690, a local privilege escalation vulnerability in the Android kernel. The exploit writes crafted data to a debugfs file to trigger the vulnerability, tested on Nexus 5X with Android 6.0.1.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Android kernel (versions affected prior to October 2016 security patch)
No auth needed
Prerequisites: Access to the target device's debugfs interface · Specific hardware (e.g., Nexus 5X with msm8994-tomtom-mtp-snd-card)
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
http://source.android.com/security/bulletin/2016-10-01.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/93301

Scores

CVSS v3 5.5
EPSS 0.0034
EPSS Percentile 25.8%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE
CWE-284
Status published
Products (1)
google/android < 7.0
Published Oct 10, 2016
Tracked Since Feb 18, 2026