ID CVE-2017-13215
Summary A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel.
References
Vulnerable Configurations
  • cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
    cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
assigner via4 cve@mitre.org
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
non_vulnerable_configuration via4
    redhat via4
    advisories
    • rhsa
      id RHSA-2018:2384
    • rhsa
      id RHSA-2018:2395
    • rhsa
      id RHSA-2019:1170
    • rhsa
      id RHSA-2019:1190
    rpms
    • kernel-0:3.10.0-862.11.6.el7
    • kernel-abi-whitelists-0:3.10.0-862.11.6.el7
    • kernel-bootwrapper-0:3.10.0-862.11.6.el7
    • kernel-debug-0:3.10.0-862.11.6.el7
    • kernel-debug-devel-0:3.10.0-862.11.6.el7
    • kernel-devel-0:3.10.0-862.11.6.el7
    • kernel-doc-0:3.10.0-862.11.6.el7
    • kernel-headers-0:3.10.0-862.11.6.el7
    • kernel-kdump-0:3.10.0-862.11.6.el7
    • kernel-kdump-devel-0:3.10.0-862.11.6.el7
    • kernel-tools-0:3.10.0-862.11.6.el7
    • kernel-tools-libs-0:3.10.0-862.11.6.el7
    • kernel-tools-libs-devel-0:3.10.0-862.11.6.el7
    • perf-0:3.10.0-862.11.6.el7
    • python-perf-0:3.10.0-862.11.6.el7
    • kernel-rt-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-debug-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-debug-devel-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-debug-kvm-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-devel-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-doc-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-kvm-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-trace-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-trace-devel-0:3.10.0-862.11.6.rt56.819.el7
    • kernel-rt-trace-kvm-0:3.10.0-862.11.6.rt56.819.el7
    refmap via4
    bid 102390
    confirm https://source.android.com/security/bulletin/2018-01-01
    sectrack 1040106
    vulnerable_product via4
      Last major update 03-10-2019 - 00:03
      Published 12-01-2018 - 23:29
      Back to Top