Google Pixel/Pixel SL Qualcomm Avtimer Driver Information Disclosure Vulnerability

Google Pixel/Pixel SL Qualcomm Avtimer Driver Information Disclosure Vulnerability

CVE-2016-5346 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_MSM_IPC sockets, which could let a local malicious user obtain sensitive information (Android Bug ID A-32551280).

Learn more about our Cis Benchmark Audit For Google Android.