CVE-2017-13315

Name of the Vulnerable Software and Affected Versions Android (affected versions not specified)

Description The issue is related to a permission bypass due to a write size mismatch in the writeToParcel and createFromParcel methods of DcParamObject.java. This could lead to an elevation of privileges, allowing a user to start an activity with system privileges without needing additional execution privileges. User interaction is not required for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.