CVE-2017-0586

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.10 through Kernel-3.18

Description The issue is related to an information disclosure vulnerability in the Qualcomm sound driver, which could allow a local malicious application to access data outside of its permission levels. This requires compromising a privileged process. The vulnerability is related to a lack of protection for service data, which could allow an attacker to violate data confidentiality using a local malicious application.

Recommendations For Android versions Kernel-3.10 through Kernel-3.18, at the moment, there is no information about a newer version that contains a fix for this vulnerability.