PT-2017-10580 · Google · Android

Published

2017-05-12

Updated

2017-05-19

CVE-2017-0632

CVSS v3.1

4.7

Medium

Vector

AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Android versions prior to the fixed version

Description An information disclosure issue in the Qualcomm sound codec driver could allow a local malicious application to access data outside of its permission levels. This issue requires compromising a privileged process.

Recommendations For Android versions prior to the fixed version, update to a version that includes the fix for this issue to prevent local malicious applications from accessing data outside of their permission levels.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-0632

Affected Products

Android

PT-2017-10580 · Google · Android

CVE-2017-0632

Weakness Enumeration

Related Identifiers

Affected Products

References · 4