CVE-2017-0337

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.18

Description The issue is related to insufficient access control in the NVIDIA GPU driver of the Android operating system. It allows a remote attacker to execute arbitrary code. A local malicious application can also execute arbitrary code within the context of the kernel, potentially leading to a local permanent device compromise. This compromise may require reflashing the operating system to repair the device.

Recommendations For Android version Kernel-3.18, consider restricting access to the NVIDIA GPU driver until a patch is available. As a temporary workaround, avoid using the driver for critical operations to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.