CVE-2016-6744
HIGHAndroid < 7.0 - Elevation of Privilege in Synaptics Touchscreen Driver
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2016-6744. PoCs published by codecat007.
AI-analyzed exploit summary The repository contains a functional proof-of-concept exploit for CVE-2016-6744, targeting a local privilege escalation vulnerability in the Android kernel. The exploit leverages a race condition in the sysfs interface to achieve arbitrary write operations, tested on Nexus 5X with Android 6.0.1.
Description
An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Android ID: A-30970485.
Exploits (1)
The repository contains a functional proof-of-concept exploit for CVE-2016-6744, targeting a local privilege escalation vulnerability in the Android kernel. The exploit leverages a race condition in the sysfs interface to achieve arbitrary write operations, tested on Nexus 5X with Android 6.0.1.
References (2)
Scores
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H