CVE-2017-0396

Name of the Vulnerable Software and Affected Versions Android versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1

Description An information disclosure issue in the Mediaserver component could allow a local malicious application to access data outside of its permission levels, potentially leading to unauthorized access to sensitive data. This issue is related to the lack of protection for internal data in the Mediaserver component, which could be exploited by a remote attacker to cause a denial of service or other system impact.

Recommendations For versions 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.