CVE-2017-6286 - NVIDIA libnvomx contains a possible out of bounds write due to a missing bounds check which could le

CVE-2017-6286

Summary

NVIDIA libnvomx contains a possible out of bounds write due to a missing bounds check which could lead to local escalation of privilege. This issue is rated as high. Product: Android. Version: N/A. Android: A-64893247. Reference: N-CVE-2017-6286.

References

http://www.securityfocus.com/bid/103286
https://source.android.com/security/bulletin/2018-03-01

Vulnerable Configurations

cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 04-04-2018 - 15:01)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	103286
confirm	https://source.android.com/security/bulletin/2018-03-01

Last major update

04-04-2018 - 15:01

Published

12-03-2018 - 13:29

Last modified

04-04-2018 - 15:01