PT-2017-16082 · Lenovo Group+1 · Lenovo Vibe/Lenovo China-Only Moto Mobile Phones+1

Published

2017-06-29

Updated

2019-10-03

CVE-2017-3749

CVSS v3.1

6.4

Medium

Vector

AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3750.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-3749

Affected Products

Lenovo Vibe/Lenovo China-Only Moto Mobile Phones

Android

PT-2017-16082 · Lenovo Group+1 · Lenovo Vibe/Lenovo China-Only Moto Mobile Phones+1

CVE-2017-3749

Related Identifiers

Affected Products

References · 3