CVE-2016-3760 : Bluetooth in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016

Bluetooth in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows local users to gain privileges by establishing a pairing that remains present during a session of the primary user, aka internal bug 27410683.

Published 2016-07-11 02:00:01

Updated 2025-04-12 10:46:41

Source Android (associated with Google Inc. or Open Handset Alliance)

View at NVD, CVE.org

Products affected by CVE-2016-3760

Google » Android » Version: 6.0.1
cpe:2.3:o:google:android:6.0.1:*:*:*:*:*:*:*
Matching versions
Google » Android » Version: 6.0
cpe:2.3:o:google:android:6.0:*:*:*:*:*:*:*
Matching versions
Google » Android » Version: 5.0
cpe:2.3:o:google:android:5.0:*:*:*:*:*:*:*
Matching versions
Google » Android » Version: 5.0.1
cpe:2.3:o:google:android:5.0.1:*:*:*:*:*:*:*
Matching versions
Google » Android » Version: 5.1
cpe:2.3:o:google:android:5.1:*:*:*:*:*:*:*
Matching versions
Google » Android » Version: 5.1.0
cpe:2.3:o:google:android:5.1.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2016-3760

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 13 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-3760

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.4	MEDIUM	AV:A/AC:M/Au:N/C:P/I:P/A:P	5.5	6.4	NIST
Access Vector: Adjacent Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.5	HIGH	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H	1.6	5.9	NIST
Attack Vector: Adjacent Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2016-3760

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2016-3760

https://android.googlesource.com/platform/hardware/libhardware/+/8b3d5a64c3c8d010ad4517f652731f09107ae9c5

8b3d5a64c3c8d010ad4517f652731f09107ae9c5 - platform/hardware/libhardware - Git at Google
https://android.googlesource.com/platform/packages/apps/Bluetooth/+/122feb9a0b04290f55183ff2f0384c6c53756bd8

122feb9a0b04290f55183ff2f0384c6c53756bd8 - platform/packages/apps/Bluetooth - Git at Google
https://android.googlesource.com/platform/system/bt/+/37c88107679d36c419572732b4af6e18bb2f7dce

37c88107679d36c419572732b4af6e18bb2f7dce - platform/system/bt - Git at Google
http://source.android.com/security/bulletin/2016-07-01.html

Android Security Bulletin—July 2016 | Android Open Source Project
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2016-3760

Products affected by CVE-2016-3760

Exploit prediction scoring system (EPSS) score for CVE-2016-3760

CVSS scores for CVE-2016-3760

CWE ids for CVE-2016-3760

References for CVE-2016-3760