PT-2017-2877 · Google+1 · Android Kernel+1

Yang Dai

Published

2017-09-01

Updated

2019-10-03

CVE-2017-0795

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Android kernel

Description The issue is related to an elevation of privilege vulnerability in the MediaTek accessory detector driver, which is associated with insufficient access control. This could allow a remote attacker to elevate their privileges.

Recommendations For Android kernel, consider restricting access to the MediaTek accessory detector driver until a patch is available. As a temporary workaround, disabling the vulnerable driver may help minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2017-02161

CVE-2017-0795

Affected Products

Android Kernel

Mediatek Accessory Detector Driver

PT-2017-2877 · Google+1 · Android Kernel+1

CVE-2017-0795

Weakness Enumeration

Related Identifiers

Affected Products

References · 5