The ethtool_get_wol function in net/core/ethtool.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 5 and 7 (2013) devices, does not initialize a certain data structure, which allows local users to obtain sensitive information via a crafted application, aka Android internal bug 28803952 and Qualcomm internal bug CR570754.
3.13.0-125.1744.4.0-87.110~14.04.14.4.0-87.1104.4.0-1026.354.4.0-1022.224.10.0-32.36~16.04.14.4.0-1065.734.4.0-1067.724.15.0-1002.24.15.0-1003.34.15.0-1004.44.15.0-1008.84.15.0-1009.94.15.0-1012.124.15.0-1013.134.15.0-1014.144.15.0-1018.184.15.0-1019.19+34 more4.15.0-1001.14.15.0-1003.34.15.0-1005.54.15.0-1006.64.15.0-1008.84.15.0-1009.94.15.0-1010.104.15.0-1014.144.15.0-1015.154.15.0-1017.18+28 moreExploitability
AV:LAC:LPR:NUI:RScope
S:UImpact
C:HI:NA:NCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N