CVE-2017-0415

Name of the Vulnerable Software and Affected Versions Android versions 6.0 through 7.1.1

Description An elevation of privilege issue in Mediaserver could allow a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normally accessible to a third-party application. The vulnerability is related to insufficient access control and could potentially allow a remote attacker to execute arbitrary code in the context of a privileged process.

Recommendations For Android versions 6.0 through 7.1.1, update to a version that includes the fix for this issue, as specified by the Android ID A-32706020. At the moment, there is no information about a newer version that contains a fix for this vulnerability.