CVE-2017-0626

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.10, Kernel-3.18

Description An information disclosure issue in the Qualcomm crypto engine driver could allow a local malicious application to access data outside of its permission levels. This issue is considered High severity because it could be used to access sensitive data without explicit user permission.

Recommendations For Android versions Kernel-3.10, Kernel-3.18, update to a version that includes the fix for this issue to prevent local malicious applications from accessing sensitive data without permission. At the moment, there is no information about a newer version that contains a fix for this vulnerability.