VDB
CVE-2016-8438
CVE-2016-8438
PUBLISHED
CVSS 9.800000190734863 CRITICAL
Integer overflow leading to a TOCTOU condition in hypervisor PIL. An integer overflow exposes a race condition that may be used to bypass (Peripheral Image Loader) PIL authentication. Product: Android. Versions: Kernel 3.18. Android ID: A-31624565. References: QC-CR#1023638.
EPSS 0.78% · 74.0th percentile
Risk Scores
CVSS 3.0
9.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.78%
74.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Google Inc. | Android | Kernel-3.18 |
| linux | linux_kernel | 3.18 |
Exploit Intelligence
- This app checks if you're vulnerable to CVE-2016-8467 and/or if your bootmode property has been tampered with. (github-poc)
- This app checks if you're vulnerable to CVE-2016-8467 and/or if your bootmode property has been tampered with. (github-poc)
- This app checks if you're vulnerable to CVE-2016-8467 and/or if your bootmode property has been tampered with. (github-poc)
- This app checks if you're vulnerable to CVE-2016-8467 and/or if your bootmode property has been tampered with. (github-poc)
- Pixel bootlaoder exploit for reading flash storage (github-poc)
- Pixel bootlaoder exploit for reading flash storage (github-poc)
- Pixel bootlaoder exploit for reading flash storage (github-poc)
- Pixel bootlaoder exploit for reading flash storage (github-poc)
- PoC for CVE-2016-5345 (github-poc)
- PoC for CVE-2016-5345 (github-poc)
…and 16 more exploits
Timeline
- Jan 5, 2017 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score