PT-2017-2322 · Google · Android

Published

2017-06-13

Updated

2019-10-03

CVE-2017-8234

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Android versions prior to a fixed version

Description The issue is related to insufficient access control in the Android operating system's camera, potentially allowing a remote attacker to compromise information privacy. An out of bounds access can occur in a camera function, which may lead to exploitation.

Recommendations For Android versions prior to the fixed version, consider restricting access to camera functions until a patch is available. As a temporary workaround, disabling camera functionality may help minimize the risk of exploitation.

Fix

Out of bounds Read

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-284

Related Identifiers

BDU:2017-01520

CVE-2017-8234

Affected Products

Android

PT-2017-2322 · Google · Android

CVE-2017-8234

Weakness Enumeration

Related Identifiers

Affected Products

References · 4