CVE-2017-0574

Name of the Vulnerable Software and Affected Versions Android versions Kernel-3.10, Kernel-3.18

Description The issue is related to an elevation of privilege vulnerability in the Broadcom Wi-Fi driver, which could allow a local malicious application to execute arbitrary code within the context of the kernel. This vulnerability is rated as High because it first requires compromising a privileged process. The vulnerability is associated with insufficient access control in the Wi-Fi driver, potentially allowing a remote attacker to execute arbitrary code in the kernel context using a special application.

Recommendations For Android versions Kernel-3.10, Kernel-3.18, update to a version that includes the fix for this issue, as referenced by Android ID A-34624457. As a temporary workaround, consider restricting access to the Broadcom Wi-Fi driver until a patch is available.