Google · Android · CVE-2017-0618
**Name of the Vulnerable Software and Affected Versions**
Android (affected versions not specified)
**Description**
The issue is related to a lack of access control in the MediaTek command queue driver of the Android operating system. It allows a remote attacker to execute arbitrary code in the context of the kernel by exploiting the vulnerability through a local malicious application. This problem is considered high severity because it first requires compromising a privileged process.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.