CVE-2016-6736
HIGHGoogle Android < 7.0 - Access Control
Title source: ruleDescription
An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the operating system to repair the device. Android ID: A-30953284. References: NVIDIA N-CVE-2016-6736.
Exploits (1)
github
WORKING POC
8 stars
by codecat007 · cpoc
https://github.com/codecat007/cvehub/tree/main/android/securityPatch/CVE-2016-6736
Scores
CVSS v3
7.8
EPSS
0.0004
EPSS Percentile
10.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Classification
CWE
CWE-264
Status
draft
Affected Products (1)
google/android
< 7.0
Timeline
Published
Nov 25, 2016
Tracked Since
Feb 18, 2026