CVE-2017-0387

Name of the Vulnerable Software and Affected Versions Android versions 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1

Description The issue is related to an elevation of privilege vulnerability in Mediaserver, which could enable a local malicious application to execute arbitrary code within the context of a privileged process. This could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application. The vulnerability is also related to insufficient access control in the Android operating system's Mediaserver, which could allow a remote attacker to execute arbitrary code.

Recommendations For Android versions 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.