ID CVE-2017-0519
Summary An elevation of privilege vulnerability in the Qualcomm fingerprint sensor driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID: A-32372915. References: QC-CR#1086530.
References
Vulnerable Configurations
  • cpe:2.3:o:linux:linux_kernel:3.18:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:3.18:*:*:*:*:*:*:*
CVSS
Base: 7.6 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:H/Au:N/C:C/I:C/A:C
refmap via4
bid 96950
confirm https://source.android.com/security/bulletin/2017-03-01
sectrack 1037968
Last major update 03-10-2019 - 00:03
Published 08-03-2017 - 01:59
Last modified 03-10-2019 - 00:03
Back to Top