CVE-2017-0623

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.18

Description The issue is related to insufficient access control in the HTC bootloader of the Android operating system. It allows a remote attacker to execute arbitrary code in the context of the bootloader by exploiting a local malicious application. This problem is considered high severity because it initially requires compromising a privileged process.

Recommendations For Android version Kernel-3.18, consider restricting access to privileged processes to minimize the risk of exploitation. As a temporary workaround, review and limit the installation of applications to trusted sources until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.