1. Home
  2. CVE Database
  3. CVE-2016-6791
HIGH · 7.0

CVE-2016-6791

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High ...

Vulnerability Description

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31252384. References: QC-CR#1071809.

CVSS Score

7.0

HIGH

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
LinuxLinux Kernel3.10

Related Weaknesses (CWE)

CWE-284

References

FAQ

What is CVE-2016-6791?

CVE-2016-6791 is a vulnerability with a CVSS score of 7.0 (HIGH). An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High ...

How severe is CVE-2016-6791?

CVE-2016-6791 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-6791?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.